HTA payloads are another method of attachments, but these also work better with Spearphishing via Links since we wonβt be attaching a non-standard file on an email, it would stick out a file that is usually never seen by a regular everyday user (not focus on the security of course). So will be showing this via the Link method.