The API client’s main page, which contains the installation instructions and a brief rationale, can be found here. Malware Bazaar is one of the many services Abuse.ch freely provides to the public. It exposes quite some API endpoints that contain useful information.

This version contains updated dependencies, as can be seen in the Git Diff, as well as new features:

• Uploading all files in a given folder (optionally recursive file searching in subfolders)
• Downloading samples can now be done using the MD-5, SHA-1, or SHA-256 hash, instead of only the SHA-256 hash
• Querying a sample can now be done using the MD-5, SHA-1, or SHA-256 hash, instead of only the SHA-256 hash
• Getting daily and hourly sample batches was previously only possible as a byte[] which contained the ZIP archive. Now, you can also download the ZIP and have it extracted on your device, read back into memory into a Map where the map’s key is the SHA-256 hash of the file and the byte array is the raw sample. Note that if you are using this on an operating system which is running antivirus/antimalware software, it will alert based on the downloaded samples!

---

To contact me, you can e-mail me at [info][at][maxkersten][dot][nl], or DM me on BlueSky @maxkersten.nl.