at a guess, some people might realize that their account information has just been compromised and that they should go to paypal to change it - but doing so will be much harder if their computer no longer works that becomes much harder… also, the fact
that the computer no longer works is an excellent way to keep the mark distracted so that maybe they’ll forget all about the email telling them to visit paypal and enter X… finally, since the advice many people (including microsoft) give is to forma
t the drive and rebuild the machine from scratch or to revert to a previously saved image of the drive, the phish email and the browser cache and url history will be gone - which means there won’t be any evidence if one went looking for such things and
you also won’t be able to discover the account compromise by being curious and revisiting the site at a later date (when your anti-phishing tech has been updated)…

in short, to inhibit the discovery of and/or recovery from the account compromise…