Bin (Binary) versions of packages, as in the binary executable. Rather than compiling the software (which takes time and is flexible) download the final bin file (quicker to download and set up). Only available for some packages when someone else has compiled and made a release version of it.

If I download a file from a questionable source: scan it (with clamscan) If I run an executable I don’t trust: use a locked-down (with firejail)

No matter the antivirus, if you keep downloading and running questionable files, you run the risk of viruses. I would say that browsing patterns are more important than any antivirus.