There are many similar tools and ways to generate a prefetch, but it doesn’t hurt to have one in PowerShell as well. I make prefetches a lot, so every option to help is useful.
Here is a bookmarklet I created that will turn a VirusTotal analysis page into a prefetch:
- http://marklets.com/VirusTotal%20to%20Prefetch.aspx
- https://gist.github.com/jgstew/ef36d020de4614673ba8
Here is a tool that helps you generate prefetches by right clicking on a file in windows:
- BF File Properties: https://bigfix.me/projects/details/7
Here is an option using relevance that can be used in the fixlet debugger:
Similarly, this will do the same, but create a prefetch block instead:
Similarly, this option will take a normal prefetch statement and turn it into a prefetch block:
A python script to make a prefetch statement: https://github.com/bigfix/make-prefetch