What "traces" are you afraid of?
History, cookies and other things of the same Thor? Well, mount the folder where it stores all this on tmpfs - it won't be there on reboot.
Hide specific files? Well, truecrypt or its heirs.
In this case, you can use any system that is more convenient for you to configure. Though banal Ubuntu.

Not advertising. I think you will find something useful
telegra.ph/Oc-05-09
And a little more
telegra.ph/Anonimnost-04-19

Take any distro. Better than Ubuntu - for a beginner it will be easier and there are no problems with the software. And even better Xubuntu to not have performance issues.
Use Virtualbox. When creating a virtual disk, enable encryption. When installing Ubuntu on it, also enable encryption.
As a result, you will receive an encrypted virtual disk in an encrypted container. How much more encrypted?
Both on the host and guest OS:
Disable hibernation and standby.
Disable paging. NO SWAP, DO YOU HEAR?! Not to a file, not to disk.
Put it there yourself and set up vpn, tor and privoxy - there are a lot of manuals on the network.
Don't forget to check for DNS and WebRTC leaks.
Do not expand the browser to full screen or make the panel a custom width.
> self-cleaning system
You don't need it. You are either deluded or already stuck. But you can use tmpfs as suggested above.
> with the exception of the encrypted
one, you should not have any "except for the encrypted" memory in principle. The entire disk is totally encrypted. You can put the hamster on a flash drive, which you can also make encrypted using the usual Ubuntu disk application. Don't bother with hardware encryption on flash drives. It is either implemented with errors (which is rare), or it does not exist at all, as on most of these flash drives (stupid disconnection of the controller by pin). These flash drives are for sale only. You should not use them to store files.
And yes - you want some kind of paronoid OS, but are you going to run it under Windows? That's funny.
And most importantly, remember that all these measures will not protect you in any way. They will only deprive the court of additional, obscure and unnecessary evidence.
You will screw up in something else - mix up accounts, use the same service from two operating systems at the same time, use a two-way clipboard and a clipper for it on the host, provoke opponents to use a sophisticated attack against you, like shaping ...
But most likely boast somewhere and tell everything yourself.
So it's better not to do anything that might not please our government. Especially if it's not illegal ;)

The easiest way in all plans with the least number of gestures:
1) Buy Kingston DT2000/16GB or similar. Hardwire encryption, pincode to decrypt, if the pincode is entered incorrectly 10 times, the data is destroyed without the possibility of recovery.
2) * Take any convenient distribution kit and preferably sharpened for liveusb. You can assemble it yourself or take something ready- made https://en.wikipedia.org/wiki/List_of_Linux_distri...
3) Install and configure all the necessary software in this distro.
4) Transfer everything you need to tmpfs (using overlayfs\unionfs).
* you can push everything into cpio with due skill, but the issue of convenience of updates / reconfiguration / software installation will be inconvenient. In this regard, overlayfs\unionfs, which W makes in tmpfs much more convenient, you need to update/reconfigure/install something, then just unmount the overlay and that's it.
If desired, to store user files, you can mount the necessary directory via EncFS (on a partition of the same flash drive\hard\yes, at least on webdav from some Yandex) via EncFS.

It can of course be trite. But the target will not leave traces in the country of residence. If so you order vps from foreign providers. The trial version is kindly put to you by a server, work for your health through a secure channel. You go to the mall and connect. If it’s very poronoit. The request is what Vasya Pushkin is doing and very interesting information can be sent and sent, but it leaves doubts that they will answer. The bottom line is to keep the data away from yourself. But have access to them at any time