I'm not an expert, just a regular user
In malware hub test with WD only, ransomwares encrypted files quite frequently while avast only failed in some occasions with the default settings. This is what I can tell you
wscript doesn't encrypt the system. The downloaded payloads (.exe) do. You can have wscript running for the whole day but if it cannot download .exe, it's unlikely to anything significant unless there is a file-less attack
WD can block these or may be not due to signatures and cloud. WD almost has no behavioral blocker so there are more chance to get infections than avast, although BB is not perfect, but it's proven to be effective
people should use WD if they can use other built-in windows components (firewall, UAC, smartsceen, SUA) but if they ignore something, WD is pretty weak