I would assume that anyone in the business of buying stolen computers already knows that if he has the device in his control, the Windows account password protection is useless. Anyone new to the business should be able to craft a clever Google search and find that information in any of several dozen legitimate websites. If he knows a minimum amount of identifying information about the legitimate owner, he can probably recover the password from his Microsoft account using the forgotten password interaction. Unless the owner has take care to prevent it, Microsoft has additionally stored a copy of the only real password of value in Windows i. e. the bitlocker password for a fully encrypted hard drive in his Microsoft account available to anyone who can scam his way into that account, or serve them with a warrant. If this is someone's wife trying to find his porn collection, your point is well taken, but why should she look on this forum of all places for this kind of advice.
I think it is more likely that the "this program" mentioned in the post along with the limited number of posts indicates that it was intended a phishing attempt or click bait to a link that he was not able to post.