PrecisionSec’s Malware Hash Feed is a real-time list of file hashes (MD5, SHA-1 and SHA-256) for known malware samples: the payloads, loaders and tools seen in active campaigns. Whether you’re a data reseller, SOC analyst or security engineer, a current set of malware hashes is essential for detecting and blocking known-bad files across your endpoints and gateways.
Every hash is mapped to a known malware family and observed campaign, so a single match tells you not just that a file is malicious, but what it is and how it fits a broader intrusion, turning an isolated detection into context.
What’s in the feed
- Real-time feed of MD5, SHA-1 and SHA-256 hashes for known malware samples
- Mapped to known malware families and observed campaigns
- Coverage across dozens of currently tracked families
- Ready to action in EDR, AV, SIEM and TIP workflows
- Delivered via CSV and REST API (JSON), plus STIX/TAXII and MISP
Malware hash indicators are included in every PrecisionSec intelligence subscription.