I am writitng a basic malware. it is kind of ransomware and other fucntions , but I am here to question something. how people spread their malware over the network? by copying itself and keeping the orignal where was download or should I spawn another process delete original and move to actual process to continue ? or just copying itself to every location and run without remove orignal?
if I thinking about copying itself over drives , but I made a mistake it never going to replicate over the network because it needs being click and shares , hdd , remote hdd , so on . acts like normal HDD. however malware without an 0day to spread over network only works with a single pc right.
Ransomware that I have seen spread, was based off an infected computer, then when that computer had a external device plugged in, it would copy over to that. Then it would install the next victim, the next then would FUD to files attached to PDF’s and Excel Spreadsheets. Which then usually got uploaded to a file server connected to mutiple networks nd VPNs.