Side note, If you are developing software that hacks anything WHY IN THE HELL would you have any antivirus software installed knowing full well that antivirus software extracts any detected virus and sends it elsewhere? For context that was the excuse for the 2017 ban of Russian antivirus firm....
1. Kaspersky AV had the strongest heuristics analyzer and the largest signature base
2. If you write malware, you want to test it periodically (in sandbox) if AV engines detect it
NSA Contractor has a requirement for AV on all computers, it was installed on all computers and fact it's bad idea on select computers doesn't matter. Contract dictates, the contract gets.
