I cannot possibly imagine that Norway would gamble with such a large stake in a single company. Such funds usually have some strategies to reduce risk and thereby protect the wealth of their citizens.
VT is more than just the antivirus engines. If you subscribe (expensive!) you can actively hunt for malware using Yara-rules and a powerful search engine. if you know some patterns in malware you are tracking, you can add Yara rules that will run each time a file is uploaded and will notify you of any matches.
Lets assume you know a threat actor always uses the same variable names during heap sprays, you can discover new malware from this threat actor with a Yara rule to look for this pattern.
At this point, the only thing I care about is whether or not they plan on releasing quality software updates in a timely manner for a reasonable amount of time...
Its really great, but some of the APIs could have been re-designed slightly when they "rebooted" the framework... e.g. getting rid of factory patterns when strictly not needed and such for added consistency.
Although I get your point, Windows has more powerfull configuration options than you might think as a user. E.g.Windows defender can be permanently disabled through administrative templates for your computer.