The biggest concern is for those running networks, where one person who doesn't run the AV could turn the bomb loose on a whole network. The worm that carries it in is viral, and can be detected by AV programs; but one idiot can turn loose what amounts to a "program" that automated defenses can't tell isn't something the SysAdmin meant to do.
Once the "bomb" is executed, it's just another .exe program file, and all it's doing is deleting a bunch of documents....