{"report_id":"24777ba1-7d21-49ff-8110-797313f15fde","version":6,"status":"done","tags":["swosspass","phishing","transport"],"date":"2023-12-04T15:14:21Z","url":{"schema":"http","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":0,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"title":"Anmeldung | SwissPass"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:10:54Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"resources.swisspass.ch","ip":{"addr":"193.203.121.145","port":443,"asn":31004,"as":"Schweizerische Bundesbahnen SBB","country":"Switzerland","country_code":"CH"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2017-02-16 18:20:22","last_seen":"2023-12-01 02:15:37","alert_count":1,"request_count":1,"received_data":2485,"sent_data":475,"comment":"","tags":null,"fingerprints":null},{"fqdn":"geolocation.onetrust.com","ip":{"addr":"104.18.32.137","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2004-01-12","domain_rank":802,"first_seen":"2018-02-07 12:23:41","last_seen":"2023-12-04 05:09:57","alert_count":0,"request_count":1,"received_data":641,"sent_data":479,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.cookielaw.org","ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2011-06-20","domain_rank":502,"first_seen":"2013-12-28 14:20:36","last_seen":"2023-12-04 05:09:57","alert_count":0,"request_count":11,"received_data":275567,"sent_data":5361,"comment":"","tags":null,"fingerprints":null},{"fqdn":"assets.adobedtm.com","ip":{"addr":"23.38.200.237","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"domain_registered":"2013-11-22","domain_rank":512,"first_seen":"2014-01-28 05:51:35","last_seen":"2023-12-03 05:19:51","alert_count":0,"request_count":1,"received_data":39624,"sent_data":455,"comment":"","tags":null,"fingerprints":null},{"fqdn":"biotecgt.com","ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":14,"request_count":14,"received_data":558770,"sent_data":7083,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.swisssign.net","ip":{"addr":"23.36.79.17","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2002-01-08","domain_rank":52052,"first_seen":"2017-01-29 18:54:42","last_seen":"2023-12-04 00:22:34","alert_count":0,"request_count":1,"received_data":3543,"sent_data":382,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.app.sbb.ch","ip":{"addr":"52.59.45.143","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"unknown","domain_rank":610967,"first_seen":"2018-04-04 16:01:55","last_seen":"2023-12-03 20:35:48","alert_count":2,"request_count":2,"received_data":29914,"sent_data":1040,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"713aeea58cd01d7b9ac09bfcea2367e1","sha1":"0edb9d4d94e7eaec5ece698656d35f26913eb570","sha256":"cebaedab49b32eba60e39fd9412496c01d842a714005e33c90a1a6bdfc60a558","sha512":"9882eb09b5628dea13b4b16126c436e3b4e2b0c4696a5e42faf673f62cf522ba110822353f52f0ac51d167bca736d6004722eaad4cbc207f9f9d7abc3d74477d","ssdeep":"","tlshash":"87b092600217080c2aea518d1f4fb314b01ef0a226d0aa253dcc6a08ab219137280ee0","size":122,"data":"","first_seen":"2023-04-01T10:47:26Z","last_seen":"2026-03-07T22:25:55.111829Z","times_seen":1203,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/otSDKStub.js","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"653dc5af4212698688db76a143fdd61a","sha1":"393fada41c29c4d6c85a7857def729bc4d2cecce","sha256":"9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a","sha512":"827396e5d2780b91d161a6695121ca55bfa3654a81a672d35226ad25ab519295b0c0c4587b56fa369c6ccd626783eef858846a8f29e7cd3bf1bd3f6ddb4dfcbe","ssdeep":"384:TRFZ2wWtdbD5ABwXwLrekrff8eTr+xITxMcGn9LuJPvV/:T8wAD5ABwXw+krfflyxUxOn96/","tlshash":"de92f789b100af3406c3629d6a37e34e3736755d3886d068b899dce0657dc8b3623bb9","size":21100,"data":"","first_seen":"2023-11-21T03:18:07Z","last_seen":"2024-08-20T18:33:24.695822Z","times_seen":2340,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/js/swisspass.min-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e37fe394cc3945b173b27bcd3b2b9779","sha1":"1e2fd6607c9dfe3a1c5beebbe89dd1d7e8b657ce","sha256":"225e078f0432e7459d74e8d9245f1982570a3897d664ca2d219ccd09b244ab95","sha512":"8dc883471c8c18143fd4816a46d9b119d6742396cef3ad8624e8b991bbc6c2b44e5be3b88aa27ef7f853cb407ea37d9543d1ade43522ef2975eef06037e9ca71","ssdeep":"1536:gj5taENXUembGTAC/gLf8XPpzaaGNZIMcSP1ZAcCHmcVRLbErD:s5taE9FLTWIPpzaaQIMvP1ZrCH9bErD","tlshash":"bfa3da0d705234b72bff30f7147f620591336499b8454c40b26d9ca61ebaa4e53afeae","size":99324,"data":"","first_seen":"2023-03-09T08:10:14Z","last_seen":"2026-02-04T10:55:24.676991Z","times_seen":1206,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"af6e188f8e8a8e651edb9c2b3bc92a96","sha1":"a1359d735cb1e4547ee57b0f364c3c389f000562","sha256":"9136713a058843bd63557e0aeef78012991e62e02802cb972d6b37f79a3642e5","sha512":"3adc7c3611b5b4009758da9c71720e7a8136bc712dff51c0e00570b3fd7889d5c8abf9ec2a49254f5c719702b49117af1a31b852959f6caf43438e224ff5aa9d","ssdeep":"","tlshash":"ec21515c8a7e0019209b30ac2baf6300b038a0836904bc353f9c7805af1da0f99e5eed","size":1167,"data":"","first_seen":"2023-04-01T10:47:26Z","last_seen":"2026-03-07T22:25:55.112606Z","times_seen":1117,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"801a46fa9aeeaf954acd83bf806928d9","sha1":"1f04f3395a9267b3b49f05e332faaf526083d8f8","sha256":"bb0e4a47c01bfbef3dfe6bab3fa0c8b411b201a287702a2722d155bd1a1b6298","sha512":"8cf47756c901a4e6ca0bb3a0ef3a49266cefcb2bb323580a07615ddc6ebc36da316d844b5b1cb31cf4cbd63785d07189bd789f5ab93b5191f2f41cbd82cd381c","ssdeep":"","tlshash":"5a219c0766b2993098f6a0e40eafa92034b159135585d1d5bf5e9b044f00b1b90326ed","size":1345,"data":"","first_seen":"2023-04-01T10:47:26Z","last_seen":"2026-03-30T05:07:58.103349Z","times_seen":1207,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/js/vendor/head/modernizr/modernizr-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4d11af9e90e621d0f067d464959ebd7b","sha1":"e256d0de8ac8b68019ee29d65894cbe58f513a52","sha256":"4a3d4cf982535aaf485c6e3af9ad1498df5c065adf94eed056f0aa13c31e92ed","sha512":"5388a7a23121648a0a01b766a60d0c45ea45ff851bb19a781ddaa15a25aa9ca53efe6a974dade09833ccbde419bebe0aec9c422ce91e5ab9358c861b0ea48134","ssdeep":"192:4fG+tgtvJqAaDCApeVM2TsNWsm/maqoBcob1bN6jXyqnb:45tgtxqjCKeVM2QNWsm/maqoBcoZJ6b7","tlshash":"42f1b58d71a2b1454787613b91bf9a0ef678a8aa69044440f0d8c5bcfeb4db84337f2d","size":7769,"data":"","first_seen":"2023-03-09T08:10:14Z","last_seen":"2026-03-17T23:30:57.260965Z","times_seen":667,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/primefaces/jquery/jquery-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"43327285f22db304e1bc08eae9c9522e","sha1":"aff0883be1487a752a7431783bf2e5eb2c39353f","sha256":"24f31a4afb4d98c85b6cff4c9a953654a77986d6c4c9e9cae52cf57e59095e01","sha512":"275cf05e6a970890afec609d3c178c5d55cf87a3e0ab3f00a6c81e93ed6fc18cde6db6a64e587a219f6e7ecad62af07ba82093062f0735423f3c215e72294a94","ssdeep":"1536:eYE1JVoiB9JqZdXXe2pD3PgoIK6alrUSTJLFk/zkZ4HWLZoHsrOa99fwkTb7/Hp9:V4KZ+L3WLZICOaLfwkT7qD1Pa/a98Hr/","tlshash":"fd93e8d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","size":97364,"data":"","first_seen":"2023-03-10T03:55:08Z","last_seen":"2026-03-17T23:30:57.268624Z","times_seen":1237,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"53e75bd25e32c985e8459eba598e5e64","sha1":"9765a64b1e9c9dea4ed7c93d619e59ce7ea2d1e0","sha256":"ed3a69e3267f056582ed012f7252319adb227fed203a4781eb820ea732aa4594","sha512":"05680972387e0b4d04470f3f4f2f203f9b7dba867ff1847e39e13476293550abe8998859b4e52e3fb308abb7d7c6280968f828813fc023e826042ae9db13158f","ssdeep":"6144:PP2yt+VxNn3VM3xfrnCdWPGSBE7qoHSqCrvpIDyP9ucHHs:XsVxNnqpBE7qVvprs","tlshash":"d594184a75a0753483e752b9c02b454eb63138adac5584acf01cc5f90bf9f861e93fab","size":413096,"data":"","first_seen":"2023-05-26T16:19:00Z","last_seen":"2026-04-02T15:23:59.08724Z","times_seen":3564,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d4f26d1da47678006e67e5fd79a88ad9","sha1":"fe725245d62d62b88207e35da5fceb09e43aac50","sha256":"d7d7889cb348f7e9cf13d05d8eeea3a489b72e8ab58bb74d2cf729a3ab1d0377","sha512":"a2a0696279a2afeccbb24ab51c590a7bc60e192a2568863ac76a135527f2130ee32433406bb9d3d871a1fdd304bb87a38a880d231c9b3d599204125884682ce0","ssdeep":"","tlshash":"0aa002dd98a7620955f3343b8fdf3208207741b7044c9a00790cda505f6572f4a57bce","size":78,"data":"","first_seen":"2023-04-01T10:47:26Z","last_seen":"2026-03-30T05:07:58.103888Z","times_seen":1206,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/js/vendor/vendor.min-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ccfc9b3b004cfb4f51ae7853af5f78d9","sha1":"2c52cec1f06c406c4d5d2cf34e870ef15a85dad7","sha256":"be0223ae72bc8c610c7a5453d349964cbe78ff8646695a58bc13a4cf0a8d81d6","sha512":"1dd5c72e69e3e0839f3bf68245988f85579ae008ebea5ee432e48a4220d2de3e40ffa0eccc619164703ec379fdcf7869aa7dd5cd67ef6db8be6e420a985d5a9f","ssdeep":"1536:9Slm8s3fXCLlM6Wu3mTWnoILVRqW42yn81ecOrOWbI7YObfZJk/ytaU6EvlQ3exv:9Sd3mTWoOeRoWVO8ataUdv33YetGw","tlshash":"de04078d76623136427f21b6106f110b3137aa7eb4458558b868ccd9af7cc4962bbf3e","size":179210,"data":"","first_seen":"2023-03-09T08:10:15Z","last_seen":"2026-03-17T23:30:57.262299Z","times_seen":1233,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"399145ad4b661f389b189a7859447fca","sha1":"8f84097c65c1ae82fa7c9f44af016277d44f5489","sha256":"d79ff28f0b8b29873e29747e25953c44056b945cfd7d66bc16442950676deed1","sha512":"e2c0277fd90422b7adb120ec6106b13d6ba6ef1915ae59fc79c41b9fcc4ff0f2118433b6854f589a6b96475e84a19ff1537d116894e452e9c42c7d90f59468c5","ssdeep":"","tlshash":"c071ef185af30415ac7330ee2bef515536a054536089cc8c3a8f97a09fe0ab6d771bf9","size":3570,"data":"","first_seen":"2023-04-01T10:47:26Z","last_seen":"2026-03-30T05:07:58.105161Z","times_seen":1202,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1f11ff1516de147edbc859172b88b90f","sha1":"ff41ecad197c7a41e95c051691f24f7c4809ecce","sha256":"ec11e1250a7ae1b1b398c4c87c7faff45940cebf586c6ace0a61bc0cfbffce47","sha512":"d528765344ea4bff212806521c99f57f4af68b959bd4847915dfecac6fbe7da9894fef71b424324bb3df4616cf1d8bf90bd3f7ebc93cd22a61f39d95ab3a64c0","ssdeep":"","tlshash":"7611eb36d91311411de338293f8eac48b4ec801b883ac444398f4a20df83d20a9bbedc","size":874,"data":"","first_seen":"2023-04-01T10:47:26Z","last_seen":"2026-03-30T05:07:58.106021Z","times_seen":1202,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js","fqdn":"assets.adobedtm.com","domain":"adobedtm.com","tld":"com"},"ip":{"addr":"23.38.200.237","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5bf712a6ebd7590bb155ad6e1290f49","sha1":"7161acdca9b24c3189fe2d8e9807faee2cccd345","sha256":"f053f049a78c3afbce0d34f57d0bea4a24f7964d0e1e45197a35c06124b5e357","sha512":"0e3f4baeb4d5faa6c0b1c27ab6b7d85c06fecc56ead27e6d2a3d1ba47e0a47f8dd4e8bc03fd91279e4995b33916ee2dce178f6f62ba39525221e5fa132ec11ff","ssdeep":"3072:gUmN8LbsM/EWCKfu0uByVgPbPSPyJmbKPbKvjHKlVzFF0ys16c:gUmN8LbsM/EWCK+wbKPbKvjHKlVzFpc","tlshash":"5dc318ccb2d9b41503e73179915f100fb27e6a8968ad8010eaa2edd43d7a60f5373e6c","size":126942,"data":"","first_seen":"2023-11-23T03:47:24Z","last_seen":"2026-02-04T03:23:07.842979Z","times_seen":641,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/otSDKStub.js","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.566Z","timestamp":1701702849566,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /scripttemplates/otSDKStub.js HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 6841\r\ncontent-encoding: gzip\r\ncontent-md5: /EzX6ku1+i8ak28m1WuIrw==\r\nlast-modified: Sat, 02 Dec 2023 03:06:57 GMT\r\netag: 0x8DBF2E3BEBA7F04\r\nx-ms-request-id: 5707c839-a01e-0026-6b95-25719b000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\nage: 28891\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff36ca7b0b69-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6841,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (21099)","md5":"653dc5af4212698688db76a143fdd61a","sha1":"393fada41c29c4d6c85a7857def729bc4d2cecce","sha256":"9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a","sha512":"827396e5d2780b91d161a6695121ca55bfa3654a81a672d35226ad25ab519295b0c0c4587b56fa369c6ccd626783eef858846a8f29e7cd3bf1bd3f6ddb4dfcbe","ssdeep":"384:TRFZ2wWtdbD5ABwXwLrekrff8eTr+xITxMcGn9LuJPvV/:T8wAD5ABwXw+krfflyxUxOn96/","tlshash":"de92f789b100af3406c3629d6a37e34e3736755d3886d068b899dce0657dc8b3623bb9","first_seen":"2023-11-21T03:18:07Z","last_seen":"2024-08-20T18:33:24.695822Z","times_seen":2340,"resource_available":true,"data":null}},"time_used":75,"timings":{"blocked":13,"dns":9,"connect":1,"send":0,"wait":15,"receive":1,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/logos/d8f340ef-178f-4257-9ea8-01744cfc5459/182f96bb-6fd6-41f6-bfd2-2807f1757dae/039a2007-c2e0-4340-8d2c-4e6f23342858/OneTrust_SwissPass_logo_mobile.png","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.599Z","timestamp":1701702849599,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /logos/d8f340ef-178f-4257-9ea8-01744cfc5459/182f96bb-6fd6-41f6-bfd2-2807f1757dae/039a2007-c2e0-4340-8d2c-4e6f23342858/OneTrust_SwissPass_logo_mobile.png HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\ncontent-type: image/png\r\ncontent-length: 1962\r\ncontent-md5: zV4bfgG4WycWxZPXBvPm8g==\r\nlast-modified: Wed, 03 Mar 2021 11:26:34 GMT\r\netag: 0x8D8DE3733F257B1\r\nx-ms-request-id: b846143e-a01e-006b-1f90-0cbe77000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\nage: 2026\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff36ca830b69-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1962,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 50, 8-bit colormap, non-interlaced\\012- data","md5":"cd5e1b7e01b85b2716c593d706f3e6f2","sha1":"d9e647da2b1c1f440f2513fd699159f74b5bf6d5","sha256":"e42fe383c86ab1185425bf334a44f9a311dd06d8ccf9e409d05b45dbe0bc48c6","sha512":"7e193862fe01d9fbf3aeea175c22685661e42851936b84c506144024fba277b61d258f8efde943744f2f90c2ce0cfeb710e538451b2160cfd85a4eb13386ef68","ssdeep":"","tlshash":"6841cb6691685c652e976c8ec6e598edf71e0e930e87210e0373b8996f7035c1142b9f","first_seen":"2023-06-07T23:36:04Z","last_seen":"2026-03-07T22:25:55.105664Z","times_seen":1186,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.569Z","timestamp":1701702849569,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /scripttemplates/202305.1.0/otBannerSdk.js HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 99428\r\ncontent-encoding: gzip\r\ncontent-md5: fuN6EZWNAh2xn3yE+0HSRQ==\r\nlast-modified: Tue, 11 Jul 2023 02:35:48 GMT\r\netag: 0x8DB81B7897E828A\r\nx-ms-request-id: bb61c14c-801e-006c-0ac6-0bd214000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\nage: 31528\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff36ca890b69-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":99428,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65451)","md5":"53e75bd25e32c985e8459eba598e5e64","sha1":"9765a64b1e9c9dea4ed7c93d619e59ce7ea2d1e0","sha256":"ed3a69e3267f056582ed012f7252319adb227fed203a4781eb820ea732aa4594","sha512":"05680972387e0b4d04470f3f4f2f203f9b7dba867ff1847e39e13476293550abe8998859b4e52e3fb308abb7d7c6280968f828813fc023e826042ae9db13158f","ssdeep":"6144:PP2yt+VxNn3VM3xfrnCdWPGSBE7qoHSqCrvpIDyP9ucHHs:XsVxNnqpBE7qVvprs","tlshash":"d594184a75a0753483e752b9c02b454eb63138adac5584acf01cc5f90bf9f861e93fab","first_seen":"2023-05-26T16:19:00Z","last_seen":"2026-04-02T15:23:59.08724Z","times_seen":3564,"resource_available":true,"data":null}},"time_used":92,"timings":{"blocked":18,"dns":0,"connect":5,"send":0,"wait":15,"receive":18,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js","fqdn":"assets.adobedtm.com","domain":"adobedtm.com","tld":"com"},"ip":{"addr":"23.38.200.237","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.567Z","timestamp":1701702849567,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"assets.adobedtm.com","organization":"Adobe Inc."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 11 Jul 2023 00:00:00 GMT","end":"Sat, 10 Aug 2024 23:59:59 GMT"},"fingerprint":{"sha1":"8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA","sha256":"29:FB:2F:10:31:1C:3F:7E:E2:AA:A1:98:1C:3D:67:5A:AD:5A:18:61:61:B2:27:76:F9:AB:A3:07:84:9B:B6:FF"}}},"request":{"raw":"GET /15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js HTTP/1.1\r\nHost: assets.adobedtm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: application/x-javascript\r\netag: \"d5bf712a6ebd7590bb155ad6e1290f49:1700654894.794356\"\r\nlast-modified: Wed, 22 Nov 2023 12:08:14 GMT\r\nserver: AkamaiNetStorage\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 39144\r\ncache-control: max-age=3600\r\nexpires: Mon, 04 Dec 2023 16:14:04 GMT\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\naccess-control-allow-origin: https://biotecgt.com\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":39144,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (32765)","md5":"d5bf712a6ebd7590bb155ad6e1290f49","sha1":"7161acdca9b24c3189fe2d8e9807faee2cccd345","sha256":"f053f049a78c3afbce0d34f57d0bea4a24f7964d0e1e45197a35c06124b5e357","sha512":"0e3f4baeb4d5faa6c0b1c27ab6b7d85c06fecc56ead27e6d2a3d1ba47e0a47f8dd4e8bc03fd91279e4995b33916ee2dce178f6f62ba39525221e5fa132ec11ff","ssdeep":"3072:gUmN8LbsM/EWCKfu0uByVgPbPSPyJmbKPbKvjHKlVzFF0ys16c:gUmN8LbsM/EWCK+wbKPbKvjHKlVzFpc","tlshash":"5dc318ccb2d9b41503e73179915f100fb27e6a8968ad8010eaa2edd43d7a60f5373e6c","first_seen":"2023-11-23T03:47:24Z","last_seen":"2026-02-04T03:23:07.842979Z","times_seen":641,"resource_available":true,"data":null}},"time_used":131,"timings":{"blocked":58,"dns":29,"connect":2,"send":0,"wait":1,"receive":2,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/css/normal/app/sso.min-20200819.css","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.561Z","timestamp":1701702849561,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/css/normal/app/sso.min-20200819.css HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 22261\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22261,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d842e9d9dcb61c04b743e144d73184f3","sha1":"6e48afc9ec0812c5e1a68bd2cc61cc862816354a","sha256":"c350b4b555a2d3118e64d364024b724f38bb595d56366f2d7cfe9b0dd4c77843","sha512":"ffa97146d3172b02474cdc23dfed822d5f0ba94515847b30629b928b9d7ee3fdd6f23c46375963b374685cbde7ba76f4afb998201d2933c71b4877c3c6f3b862","ssdeep":"768:K5ptYJ7mvjNiYXayvATzcGxwRv5FSN0k4PSw2w+Zw2w+6ZkynBCb1c9FnUShWlwV:K/uJqHXayvAPFwXu5NL6tw4l","tlshash":"2b04a8d6eae214ad372bc41fa4c16776173b9011fa572fb6f2d7946c8b883860223f45","first_seen":"2023-04-19T15:50:51Z","last_seen":"2025-09-08T08:02:23.286267Z","times_seen":475,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":120,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/js/vendor/head/modernizr/modernizr-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.563Z","timestamp":1701702849563,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/js/vendor/head/modernizr/modernizr-20200819.js HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 3217\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3217,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (7466)","md5":"4d11af9e90e621d0f067d464959ebd7b","sha1":"e256d0de8ac8b68019ee29d65894cbe58f513a52","sha256":"4a3d4cf982535aaf485c6e3af9ad1498df5c065adf94eed056f0aa13c31e92ed","sha512":"5388a7a23121648a0a01b766a60d0c45ea45ff851bb19a781ddaa15a25aa9ca53efe6a974dade09833ccbde419bebe0aec9c422ce91e5ab9358c861b0ea48134","ssdeep":"192:4fG+tgtvJqAaDCApeVM2TsNWsm/maqoBcob1bN6jXyqnb:45tgtxqjCKeVM2QNWsm/maqoBcoZJ6b7","tlshash":"42f1b58d71a2b1454787613b91bf9a0ef678a8aa69044440f0d8c5bcfeb4db84337f2d","first_seen":"2023-03-09T08:10:14Z","last_seen":"2026-03-17T23:30:57.260965Z","times_seen":667,"resource_available":true,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":132,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/img/logo_text_de-20200819.svg","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.572Z","timestamp":1701702849572,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/img/logo_text_de-20200819.svg HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 15124\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15124,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- XML 1.0 document text\\012- XML document text\\012- HTML document text\\012- HTML document, Unicode text, UTF-8 text, with very long lines (1350)","md5":"512410d9227bb0c2481e175dce0eda72","sha1":"1deb5d9f09592101e632a8351865d54b1d6a27f7","sha256":"c337d42ed7979c6be0282900bd957dd9d112a430dc7761463d655eb8f0d9bc07","sha512":"855feb227bb9448de654bf5c616a2dbf71c4f97550a00a30372cb0ae2f7b0bd70b7a4430d84c8386934b7064d8bc3f66e926b5b2dd9920812af96c3469743a86","ssdeep":"1536:mYtjakc0aZDT/Zs4sC0jfjR1YG+s2Ltt99ac0eW53zzVCoYs2rhrXzgEA6SJB5LQ:j5E2tvYkUv1","tlshash":"37d3a716436884e8b59f45f13cd41d0a2a5a98e723125919faae8c31dff3ef3d382b45","first_seen":"2023-05-09T01:15:49Z","last_seen":"2026-04-03T10:09:30.195215Z","times_seen":2234,"resource_available":false,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/primefaces/jquery/jquery-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.585Z","timestamp":1701702849585,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/primefaces/jquery/jquery-20200819.js HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 32935\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32935,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (32060)","md5":"43327285f22db304e1bc08eae9c9522e","sha1":"aff0883be1487a752a7431783bf2e5eb2c39353f","sha256":"24f31a4afb4d98c85b6cff4c9a953654a77986d6c4c9e9cae52cf57e59095e01","sha512":"275cf05e6a970890afec609d3c178c5d55cf87a3e0ab3f00a6c81e93ed6fc18cde6db6a64e587a219f6e7ecad62af07ba82093062f0735423f3c215e72294a94","ssdeep":"1536:eYE1JVoiB9JqZdXXe2pD3PgoIK6alrUSTJLFk/zkZ4HWLZoHsrOa99fwkTb7/Hp9:V4KZ+L3WLZICOaLfwkT7qD1Pa/a98Hr/","tlshash":"fd93e8d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","first_seen":"2023-03-10T03:55:08Z","last_seen":"2026-03-17T23:30:57.268624Z","times_seen":1237,"resource_available":true,"data":null}},"time_used":275,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":140,"receive":135,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/js/vendor/vendor.min-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.593Z","timestamp":1701702849593,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/js/vendor/vendor.min-20200819.js HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 51659\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":51659,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (663)","md5":"ccfc9b3b004cfb4f51ae7853af5f78d9","sha1":"2c52cec1f06c406c4d5d2cf34e870ef15a85dad7","sha256":"be0223ae72bc8c610c7a5453d349964cbe78ff8646695a58bc13a4cf0a8d81d6","sha512":"1dd5c72e69e3e0839f3bf68245988f85579ae008ebea5ee432e48a4220d2de3e40ffa0eccc619164703ec379fdcf7869aa7dd5cd67ef6db8be6e420a985d5a9f","ssdeep":"1536:9Slm8s3fXCLlM6Wu3mTWnoILVRqW42yn81ecOrOWbI7YObfZJk/ytaU6EvlQ3exv:9Sd3mTWoOeRoWVO8ataUdv33YetGw","tlshash":"de04078d76623136427f21b6106f110b3137aa7eb4458558b868ccd9af7cc4962bbf3e","first_seen":"2023-03-09T08:10:15Z","last_seen":"2026-03-17T23:30:57.262299Z","times_seen":1233,"resource_available":true,"data":null}},"time_used":345,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/js/swisspass.min-20200819.js","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.595Z","timestamp":1701702849595,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/js/swisspass.min-20200819.js HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 24158\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24158,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"e37fe394cc3945b173b27bcd3b2b9779","sha1":"1e2fd6607c9dfe3a1c5beebbe89dd1d7e8b657ce","sha256":"225e078f0432e7459d74e8d9245f1982570a3897d664ca2d219ccd09b244ab95","sha512":"8dc883471c8c18143fd4816a46d9b119d6742396cef3ad8624e8b991bbc6c2b44e5be3b88aa27ef7f853cb407ea37d9543d1ade43522ef2975eef06037e9ca71","ssdeep":"1536:gj5taENXUembGTAC/gLf8XPpzaaGNZIMcSP1ZAcCHmcVRLbErD:s5taE9FLTWIPpzaaQIMvP1ZrCH9bErD","tlshash":"bfa3da0d705234b72bff30f7147f620591336499b8454c40b26d9ca61ebaa4e53afeae","first_seen":"2023-03-09T08:10:14Z","last_seen":"2026-02-04T10:55:24.676991Z","times_seen":1206,"resource_available":true,"data":null}},"time_used":374,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":345,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/img/logo-20200819.svg","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.573Z","timestamp":1701702849573,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/img/logo-20200819.svg HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 2545\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2545,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- HTML document, ASCII text, with very long lines (7374), with no line terminators","md5":"795242580bfa3135028bd0750fdc1654","sha1":"2c344b6662e62ddbdba49f635e1c33a827fe75d4","sha256":"deeee170c3759a6ed35c0c05c5b935d0e7638f1c0c5677166918ecff6edb1909","sha512":"09cf57ea5f0fc9778dce5578718e2b2db960d145bec1afce58b6ba0b1670ff4e31b91b3cb69eab0004e72e193b4d0f374a13f5c8d96a79902a96f5c72a65054d","ssdeep":"192:1w1xe9KNd07c0Zsg2/ZX0dRzVO0Zfv4emqb9Z+siAtz6oyQg/S:uc9y07/Zsge0dRzzZYebb9Z+sh9yQp","tlshash":"25e198f5aa1c96bc24579a58cf32d664670fa0fe73aa83f24c1ed7b06443d94d943c28","first_seen":"2023-05-09T01:15:49Z","last_seen":"2026-04-03T10:09:30.190303Z","times_seen":2355,"resource_available":false,"data":null}},"time_used":378,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":375,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/img/loader-20200819.png","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.575Z","timestamp":1701702849575,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/img/loader-20200819.png HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:03 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-length: 272\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":272,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 24 x 24, 4-bit colormap, non-interlaced\\012- data","md5":"1a7ca896940219da5393e26600e0ee7b","sha1":"558e1d3bad16b2faa7527f1f3133e21bf89cd507","sha256":"f766c7457c6ec463eaa85778aa47261344f1772e0b7cf1987ad212f889f472f5","sha512":"29b51656a862e758fab0bad8b5cd18d68ed7f57a6fdd42b188d85dd1705234ed9956b15276baaa031d6f20d5049317d86bd13752aea03739183b9461b8d33863","ssdeep":"","tlshash":"a4d097c3c8be5c2aad60423393ca88278a232da010043243be36f829c73212889302d1","first_seen":"2023-05-09T01:15:49Z","last_seen":"2026-04-03T10:09:30.190941Z","times_seen":1733,"resource_available":false,"data":null}},"time_used":378,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":378,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.915Z","timestamp":1701702849915,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: application/x-javascript\r\ncontent-length: 1529\r\ncf-ray: 8304ff38dc4d0b69-OSL\r\ncf-cache-status: DYNAMIC\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\ncontent-encoding: gzip\r\netag: 0x8DB6BF787509085\r\nlast-modified: Tue, 13 Jun 2023 10:18:27 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\ncontent-md5: S7X9KDEnrSBGLviuIbRqFQ==\r\nx-content-type-options: nosniff\r\nx-ms-blob-type: BlockBlob\r\nx-ms-lease-status: unlocked\r\nx-ms-request-id: 325d6441-301e-0069-4ec4-2600cf000000\r\nx-ms-version: 2009-09-19\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1529,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JSON data\\012- , ASCII text, with very long lines (3891), with no line terminators","md5":"f5799ae37e4b3e55228f06bd94e410b9","sha1":"ea839d7c5653ba227b5e8422967787372306722d","sha256":"27059a7f9f3259d2eed9ad9c5781b3bbced25e1288f0fceb11acf832620fef08","sha512":"a7306fef59d90ec6735c4c7bcab7688d6855dd6ada5b4dec79795c6367f524f2024de747adc6b5a8549638baf0a6a67984051b7ecdc0b9c9dcbf61d75a6b0b6f","ssdeep":"","tlshash":"8f814019764c913dcb9d83c9d408be0d8fdd78325286b818d49e4cac1bab7e32899723","first_seen":"2023-06-18T13:10:46Z","last_seen":"2024-08-21T08:43:26.056192Z","times_seen":387,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":70,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D","fqdn":"ocsp.swisssign.net","domain":"swisssign.net","tld":"net"},"ip":{"addr":"23.36.79.17","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-04T15:14:10.108768775Z","timestamp":1701702850108,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /ACD03AC2C25755916911CC706A59388A8CAC9C3D HTTP/1.1\r\nHost: ocsp.swisssign.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 87\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 2793\r\nLast-Modified: Mon, 04 Dec 2023 15:13:48 GMT\r\nETag: \"819a25492c0d985d06a78fe2332fcf13ca92b126\"\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=16070400\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nReferrer-Policy: same-origin\r\nFeature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'\r\nContent-Type: application/ocsp-response\r\nCache-Control: public, no-transform, must-revalidate, max-age=3600\r\nExpires: Mon, 04 Dec 2023 16:14:04 GMT\r\nDate: Mon, 04 Dec 2023 15:14:04 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":2793,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"56371eb0bb423a106124f26928e8bb20","sha1":"819a25492c0d985d06a78fe2332fcf13ca92b126","sha256":"59c2a9d86c3d10ab596a940d05fab1b58f0a0225a1ddc16b512b2e860e47a509","sha512":"e55a323d59951c418c307a38c1391af22ecba0784aef04967e03c96bd2c249549d904433a027282a8263c656d1c44bbc466c451a16b4f7ac0a72bce180b6d630","ssdeep":"","tlshash":"d451fa878b2ca838c9d21e923eabc93b7cb402c7b4941544755ac95a9c087527f9912d","first_seen":"2023-12-04T16:14:28Z","last_seen":"2023-12-04T16:14:28Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Light.woff2","fqdn":"cdn.app.sbb.ch","domain":"sbb.ch","tld":"ch"},"ip":{"addr":"52.59.45.143","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.900Z","timestamp":1701702849900,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.app.sbb.ch","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 16 Aug 2023 00:00:00 GMT","end":"Fri, 13 Sep 2024 23:59:59 GMT"},"fingerprint":{"sha1":"91:97:68:15:9B:1D:9F:0F:5B:C1:DB:F4:EE:DC:A6:EC:4A:2A:09:71","sha256":"90:BF:D9:B0:4E:77:54:7B:2F:95:EC:0D:41:C3:7F:C2:27:B6:CC:14:00:3F:02:69:3D:59:63:A9:DD:68:1D:5D"}}},"request":{"raw":"GET /fonts/v1_6_subset/SBBWeb-Light.woff2 HTTP/1.1\r\nHost: cdn.app.sbb.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: application/font-woff2\r\ncontent-length: 14212\r\nserver: nginx/1.25.3\r\nlast-modified: Fri, 17 Dec 2021 15:16:26 GMT\r\nvary: Accept-Encoding\r\netag: \"61bca9ca-3784\"\r\nexpires: Tue, 03 Dec 2024 15:14:04 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With\r\ncache-control: max-age=31536000, public, private\r\naccept-ranges: bytes\r\nset-cookie: 9527f1a32486d650b0687919ffd41c2b=52f0541f9f8f4206aabb929d1ac849fe; path=/; HttpOnly; Secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14212,"size_decoded":0,"mime_type":"application/font-woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14212, version 1.0\\012- data","md5":"8b70a44a98a0ac5d721df7d8f5136f7b","sha1":"10e10c01e732f3d35a78e1051bfcc9fe2589ddda","sha256":"5c7f0e173844556da7ca5eb8936fa3dab1c00206960920a49a1eea9cde2bfaaf","sha512":"65833d65ef11617a6d2d2a9c2ed81fc7079368da6f9569b56404fa5a66d878088d95c5632b216d0e6c7f3e40aea6a6d7df5b9c0147743ecc06f38e95508397f2","ssdeep":"384:5bJ1keL4/s04W4gUz+/1x55hsno5oky9RAl51Gx:ZasaD/V5hsnDVyC","tlshash":"a652d017c934adb9c708cc34b49e35b2cc2e9ad444a2382c57c7a1b9370a9d36e54e4d","first_seen":"2023-04-05T05:09:02Z","last_seen":"2026-04-03T10:09:30.193164Z","times_seen":2602,"resource_available":false,"data":null}},"time_used":408,"timings":{"blocked":178,"dns":29,"connect":25,"send":0,"wait":28,"receive":26,"ssl":118},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"resources.swisspass.ch/content/dam/swisspass/co-branding/sbbkn/logo.png","fqdn":"resources.swisspass.ch","domain":"swisspass.ch","tld":"ch"},"ip":{"addr":"193.203.121.145","port":443,"asn":31004,"as":"Schweizerische Bundesbahnen SBB","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.570Z","timestamp":1701702849570,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"resources.swisspass.ch","organization":"Schweizerische Bundesbahnen SBB"},"issuer":{"commonName":"SwissSign RSA TLS OV ICA 2021 - 1","organization":"SwissSign AG"},"validity":{"start":"Tue, 02 May 2023 12:49:36 GMT","end":"Thu, 02 May 2024 12:49:36 GMT"},"fingerprint":{"sha1":"6F:98:02:CF:4C:3C:93:33:D6:5D:99:B4:45:98:B5:7D:3F:26:FB:24","sha256":"DA:99:57:81:7F:92:41:00:65:AC:96:6D:83:F5:28:0B:DC:97:A6:77:EF:D8:5A:F6:FA:41:45:20:65:7D:AF:98"}}},"request":{"raw":"GET /content/dam/swisspass/co-branding/sbbkn/logo.png HTTP/1.1\r\nHost: resources.swisspass.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 04 Dec 2023 15:14:04 GMT\r\nServer: Apache\r\nContent-Length: 1818\r\nETag: \"71a-60ba57da2b1f3\"\r\nExpires: Mon, 04 Dec 2023 21:13:01 GMT\r\nCache-Control: max-age=21600\r\nVary: User-Agent,X-Requested-With\r\nLast-Modified: Mon, 04 Dec 2023 02:01:05 GMT\r\nX-Plattform: cprod\r\nx-url: /content/dam/swisspass/co-branding/sbbkn/logo.png\r\nX-Varnish: 78315698 109838394\r\nX-Cache: HIT\r\nAccept-Ranges: bytes\r\nX-Frame-Options: SAMEORIGIN\r\nStrict-Transport-Security: max-age=16070400\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nReferrer-Policy: same-origin\r\nKeep-Alive: timeout=10, max=500\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1818,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 170 x 19, 8-bit colormap, non-interlaced\\012- data","md5":"90212f3504e52c2077f65efc908f4b82","sha1":"aa57cc70978927a10889f4bb8b278cd223fc178a","sha256":"d45fd2cc05090e4b504f361216b1032409ed3cdf9904f50ce56e8a6b0f3c006e","sha512":"f269ff90a977dbce1ee3a93980e0e4056180078bfad2947b610d5649d52bb02e4f328d84730943941e1ca879321b79eb1d35c4910fae23c31d03139ebc173f06","ssdeep":"","tlshash":"f831e79747245eb3cc1f08b1ccab59039aec1ddc0c0252b72a619168df8207419e0dff","first_seen":"2023-05-05T11:25:27Z","last_seen":"2025-11-16T07:49:59.232262Z","times_seen":497,"resource_available":false,"data":null}},"time_used":1195,"timings":{"blocked":564,"dns":75,"connect":37,"send":0,"wait":43,"receive":1,"ssl":471},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/img/login_bg.jpg","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.951Z","timestamp":1701702849951,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/img/login_bg.jpg HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:04 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-length: 226097\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":226097,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3508x2339, components 3\\012- data","md5":"2cc7e4969f296cbabbd97cc9044d562b","sha1":"a687ac80bd3d9997b7df2c4e7105b7abbce116f8","sha256":"c299a55acdc9c551ab7e67912892c6db8ed164dbcebaca370aa75f0f1297c8d4","sha512":"57620fe3a00566cb1dda8601c9775774900a43c20d6dc61ab5cd9a5624e0815e749bb25f56cf4a4d05c4791a2f34ef5899a0c926ba29db56147d2cad93befff6","ssdeep":"6144:BJ9052p7+ll/ObrEfLE1tvDZvopVWw9HUcr95oN:x05u7KObr04Vwy1croN","tlshash":"59241233e7506e87e0292b72d6f35f747e2ea67c62002e73558c22366e2b2c81f1e555","first_seen":"2023-05-05T11:25:27Z","last_seen":"2025-09-11T13:11:54.94178Z","times_seen":497,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":121,"receive":173,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/fonts/icomoon/icomoon.woff2?7m5yri","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.953Z","timestamp":1701702849953,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/fonts/icomoon/icomoon.woff2?7m5yri HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/resources/css/normal/app/sso.min-20200819.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:04 GMT\r\ncontent-type: font/woff2\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-length: 6944\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\nserver: LiteSpeed\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6944,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 6944, version 1.0\\012- data","md5":"175797213b8b8dffcc1bd588a9ecec2f","sha1":"6214e06b11da9fadc19ed601467ca86617839e7e","sha256":"45b8f30ef99295a0d738416e4e5af9fa2dd41619499622c2c57416580fc7197b","sha512":"1882998119bae4598de4488a421556a15a1a7489d68c44666061e16106096fb6096e3853a05d194e41996e8f3b8fbaf9bf4f59c409ee4b98794fd4befb8a90b6","ssdeep":"96:9bl0X0JlXOSmqyv4mffEY8WjSF4d/L2mFFULC0ilG66s271lf+Cbu2jHvYpinXE+:9p0X0LWZvffEY8huRK+j0iHXoW8PPz","tlshash":"e8e18e6315f6022d81f1377472a3abf292cbc06e4411bbb25f0be0a5575add9729e322","first_seen":"2023-05-09T01:15:49Z","last_seen":"2025-09-11T13:11:54.942368Z","times_seen":616,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.569Z","timestamp":1701702849569,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /scripttemplates/202305.1.0/otBannerSdk.js HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 99428\r\ncontent-encoding: gzip\r\ncontent-md5: fuN6EZWNAh2xn3yE+0HSRQ==\r\nlast-modified: Tue, 11 Jul 2023 02:35:48 GMT\r\netag: 0x8DB81B7897E828A\r\nx-ms-request-id: bb61c14c-801e-006c-0ac6-0bd214000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\nage: 31529\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff3bded90b69-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":99428,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65451)","md5":"53e75bd25e32c985e8459eba598e5e64","sha1":"9765a64b1e9c9dea4ed7c93d619e59ce7ea2d1e0","sha256":"ed3a69e3267f056582ed012f7252319adb227fed203a4781eb820ea732aa4594","sha512":"05680972387e0b4d04470f3f4f2f203f9b7dba867ff1847e39e13476293550abe8998859b4e52e3fb308abb7d7c6280968f828813fc023e826042ae9db13158f","ssdeep":"6144:PP2yt+VxNn3VM3xfrnCdWPGSBE7qoHSqCrvpIDyP9ucHHs:XsVxNnqpBE7qVvprs","tlshash":"d594184a75a0753483e752b9c02b454eb63138adac5584acf01cc5f90bf9f861e93fab","first_seen":"2023-05-26T16:19:00Z","last_seen":"2026-04-02T15:23:59.08724Z","times_seen":3564,"resource_available":true,"data":null}},"time_used":92,"timings":{"blocked":18,"dns":0,"connect":5,"send":0,"wait":15,"receive":18,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"geolocation.onetrust.com/cookieconsentpub/v1/geo/location","fqdn":"geolocation.onetrust.com","domain":"onetrust.com","tld":"com"},"ip":{"addr":"104.18.32.137","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.257Z","timestamp":1701702850257,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"onetrust.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 13 Nov 2023 00:00:00 GMT","end":"Tue, 12 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47","sha256":"9C:B3:02:4D:3D:FB:14:72:09:8E:9A:5F:CD:B7:BB:D3:95:F4:29:7B:F8:B5:74:12:F0:7E:2C:E0:96:8F:1E:EB"}}},"request":{"raw":"GET /cookieconsentpub/v1/geo/location HTTP/1.1\r\nHost: geolocation.onetrust.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET, OPTIONS\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nserver: cloudflare\r\ncf-ray: 8304ff3b5cbab524-OSL\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":247,"size_decoded":0,"mime_type":"application/json","magic":"gzip compressed data, from Unix\\012- data","md5":"26ddda0ae7fa00891ac8be7fa194e94f","sha1":"2bac58fb2c9ac1e573c81737bea495b7a6cbe3d1","sha256":"5e5fb36f42116c8d0ad2742d1c73c46957a7ad5d211fe49b14e49c30687c397e","sha512":"5463030c3bea0a3ed008f30f496edc1510a03c161ab09eda07998b5b1e00689e4e576b0033a59e7c2e4e7cfee00b208c8e53b15933296ed90da60e35b11d7105","ssdeep":"","tlshash":"73d0970abfe37433ef96f1bd4879baaf6d0a905c1266c1093804004e8023e480b4eee0","first_seen":"2023-12-04T16:14:28Z","last_seen":"2023-12-04T16:14:28Z","times_seen":1,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":55,"dns":28,"connect":1,"send":0,"wait":18,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.482Z","timestamp":1701702850482,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://biotecgt.com/\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: application/x-javascript\r\ncontent-length: 13180\r\ncf-ray: 8304ff3c6f8e0b69-OSL\r\ncf-cache-status: DYNAMIC\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\ncontent-encoding: gzip\r\netag: 0x8DB6BF78A955A3C\r\nlast-modified: Tue, 13 Jun 2023 10:18:32 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\ncontent-md5: gsgcCcbskVX4SGLciXs8ZA==\r\nx-content-type-options: nosniff\r\nx-ms-blob-type: BlockBlob\r\nx-ms-lease-status: unlocked\r\nx-ms-request-id: d6e50bab-101e-0023-32c4-26a340000000\r\nx-ms-version: 2009-09-19\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13180,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JSON data\\012- HTML document, Unicode text, UTF-8 text, with very long lines (47858), with no line terminators","md5":"39abfe8a42109cb51aff0a8229f3e567","sha1":"8af43377efe635e7e2657f4dbe8cfc215b1fe275","sha256":"baa501b6aec5713c50f5202ee673d2397fdb2423d86577952277fb31bf5b0ea6","sha512":"ca4def6fa8aa123101bf135a546d9eab005641fc2323441cc6a3b69f4a97c33a99c88fa0b699b91cb846125f8cd9d8e4d256898b941394e4dbc668b98b65550f","ssdeep":"768:fYcB0yKdSG9yY4CX4D8xtki8hDSa3AKcJlY//6luFQ9hOMr3teCC:fhBQIStGh+uSlY/ClfHXC","tlshash":"7a234d1b789920bc474747216176af9bf33c6626f7c8883dd65d8c360087af25a7b287","first_seen":"2023-06-18T13:10:46Z","last_seen":"2024-08-21T08:43:26.062293Z","times_seen":365,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":67,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/202305.1.0/assets/otFlat.json","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.563Z","timestamp":1701702850563,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /scripttemplates/202305.1.0/assets/otFlat.json HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://biotecgt.com/\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: application/json\r\ncontent-length: 3019\r\ncontent-encoding: gzip\r\ncontent-md5: iCAxFkQWfzfDHevR0IbBjg==\r\nlast-modified: Tue, 11 Jul 2023 02:35:41 GMT\r\netag: 0x8DB81B78556557A\r\nx-ms-request-id: 801ce3bf-601e-0029-059c-2607f7000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff3ce8040b69-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3019,"size_decoded":0,"mime_type":"application/json","magic":"JSON data\\012- , ASCII text, with very long lines (11171)","md5":"c2bbc3724e963e27244e489b265363b5","sha1":"d1fbd7d575c4fe9ada30ffe47633a288caeb23e7","sha256":"aa355c393e03f831dbdbcc678ba16396aab95930b1bc5b0549695d40cc955ca1","sha512":"09588976637ba75e6c7bd4dcf2fffbdfcb6ad9650ec3fc8a36f47a9850428d3f90d480158c2b5e2fecafaf5929727219a58bae3b3eda114e1da28e4c239c4f9f","ssdeep":"384:7Y7y0clDjbn42OXOw85csXfn/OoH6iAHyPtJJAR:7Ay5P/i","tlshash":"5f4299513e101b28e0efcb995882b5d834323d8bfe3399dda24da7b443ad2f60d26705","first_seen":"2023-04-12T16:46:56Z","last_seen":"2026-04-03T17:55:51.381184Z","times_seen":3937,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/202305.1.0/assets/v2/otPcTab.json","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.566Z","timestamp":1701702850566,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /scripttemplates/202305.1.0/assets/v2/otPcTab.json HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://biotecgt.com/\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: application/json\r\ncontent-length: 13388\r\ncontent-encoding: gzip\r\ncontent-md5: icB0rlbk2rDhRv/9fRK6uA==\r\nlast-modified: Tue, 11 Jul 2023 02:35:44 GMT\r\netag: 0x8DB81B786D01660\r\nx-ms-request-id: dff1f108-701e-0047-809c-2652d8000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff3ce8070b69-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13388,"size_decoded":0,"mime_type":"application/json","magic":"JSON data\\012- , ASCII text, with very long lines (50881)","md5":"145311c82ac3491656be44cc67fcd48c","sha1":"a0f10c3a9f1b464edae1617f306b908d7b111c57","sha256":"32a8c8c75e0574d43215424909195c56e950e04c0839abec5e7cf5b0c0ac4282","sha512":"5a4357984e2f68047b431cf654fb8c6d862deb611b36044876b922b477e2a3439969b563dd56b1104f5378ce0aa0d407a20888319b03ea7e5c8bb96c6b7ad5b7","ssdeep":"384:IaMapYA05nARnbRSxWAD6wbSzqomLmaq+7svf6LYQpxglbicQqyNMqpGiaq3B/vn:DpYAoeiWAjYmLh7s0pxObccq3VsJ6qji","tlshash":"aa53e99b3ea1530afed38b19eb966de97124c81fbc334deef1420678868d3e18d51509","first_seen":"2023-04-26T21:04:31Z","last_seen":"2026-04-04T01:34:49.305531Z","times_seen":4068,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":48,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Roman.woff2","fqdn":"cdn.app.sbb.ch","domain":"sbb.ch","tld":"ch"},"ip":{"addr":"52.59.45.143","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.659Z","timestamp":1701702850659,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.app.sbb.ch","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 16 Aug 2023 00:00:00 GMT","end":"Fri, 13 Sep 2024 23:59:59 GMT"},"fingerprint":{"sha1":"91:97:68:15:9B:1D:9F:0F:5B:C1:DB:F4:EE:DC:A6:EC:4A:2A:09:71","sha256":"90:BF:D9:B0:4E:77:54:7B:2F:95:EC:0D:41:C3:7F:C2:27:B6:CC:14:00:3F:02:69:3D:59:63:A9:DD:68:1D:5D"}}},"request":{"raw":"GET /fonts/v1_6_subset/SBBWeb-Roman.woff2 HTTP/1.1\r\nHost: cdn.app.sbb.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:05 GMT\r\ncontent-type: application/font-woff2\r\ncontent-length: 14152\r\nserver: nginx/1.25.3\r\nlast-modified: Fri, 17 Dec 2021 15:16:26 GMT\r\nvary: Accept-Encoding\r\netag: \"61bca9ca-3748\"\r\nexpires: Tue, 03 Dec 2024 15:14:05 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS\r\naccess-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With\r\ncache-control: max-age=31536000, public, private\r\naccept-ranges: bytes\r\nset-cookie: 9527f1a32486d650b0687919ffd41c2b=cd2a35138fc80f8b362d5224326ba6e4; path=/; HttpOnly; Secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14152,"size_decoded":0,"mime_type":"application/font-woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14152, version 1.0\\012- data","md5":"82e55d1865d40988204fa60522628f4b","sha1":"e9d74fb23204a62c520d19b8fae3f0193539cdfb","sha256":"966a89b8080879ba41c6b9f15c5efb58182c33a0d2d1e08748beb554b28b4997","sha512":"560f0dd619c0d077e763bda61e5d75317eb77bece73ef7fee4b47952fc42efa6e04e2bde8b1a578850dbe11f6cf5c1e9843751cd58708b9b23d3c5f1ffe05689","ssdeep":"384:RsNCc7msIdEuqeDGlzVcxs3K+voFVbmzjBl7STQMxap/CVJ3sCFhwvtG:giskEuqe8Vcx+K+QFUPB0TQMkRCT3sCT","tlshash":"4f52d18f9cb3257be1c27774b9b37ad87adf669e3143c28883273bd9458101136688e1","first_seen":"2023-04-05T17:56:10Z","last_seen":"2026-03-07T22:25:55.093124Z","times_seen":1341,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/scripttemplates/202305.1.0/assets/otCommonStyles.css","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.567Z","timestamp":1701702850567,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /scripttemplates/202305.1.0/assets/otCommonStyles.css HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://biotecgt.com/\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\ncontent-type: text/css\r\ncontent-md5: oWkBTLgDDXvrUsd93y/Zxg==\r\nlast-modified: Tue, 11 Jul 2023 02:35:52 GMT\r\nx-ms-request-id: 1e6a6d00-a01e-009f-389c-267581000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff3ce8080b69-OSL\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21608,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (21608), with no line terminators","md5":"a169014cb8030d7beb52c77ddf2fd9c6","sha1":"fbe4667b4f8f01cd6c4dd2f9c9cacfb389cb54e1","sha256":"d0c233d327541d2961f1cde9e53a6166279655f4d4041c1bc458ac1701827719","sha512":"f46123e7223b5ac490badb950aa79d4a7bdc09d5c2a4533c3d82f3555a6308c54f1719f1959e75003a94cb2877ed65f35110529f33981c4c4c03256f345ae3c8","ssdeep":"384:+I8C4hGoFXlCS7FGAVsq1nwGfg4xqsQMPNE:OaJ","tlshash":"bea2339b38552b19dad7d31d992539827d11aceffd339ceee009a3784adc3e24c1424a","first_seen":"2023-04-12T16:46:56Z","last_seen":"2026-04-04T01:34:49.137515Z","times_seen":7137,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/logos/static/ot_guard_logo.svg","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.699Z","timestamp":1701702850699,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /logos/static/ot_guard_logo.svg HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://biotecgt.com/\r\nOrigin: https://biotecgt.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:05 GMT\r\ncontent-type: image/svg+xml\r\ncontent-md5: tXyZydHjxQshFMbbBT1/8A==\r\nlast-modified: Mon, 04 Dec 2023 06:54:59 GMT\r\nx-ms-request-id: 5c1c104f-b01e-0048-669c-2624b4000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff3db8cf0b69-OSL\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":497,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (507), with no line terminators","md5":"4cefeea2da1f500b581d4842d6454a50","sha1":"9939dd4c1394641f53655e558bfdca7499480c52","sha256":"220f235f0188ff469b92b56eb86adf4e828b8a90c587ebfa073383b8583aaeb2","sha512":"1eca8fc62c62af40320c76b38d2a955dd5eca1e3b5aab431a4a7e2174197b598a3dc4d443a069dd07b9c79a16a64227170ded5bfb78dba65499f658057c2e4dc","ssdeep":"","tlshash":"a5f09e9a1906a6bd76821d6dee3c06e44c3c7ce178ec21c4d49de045e5984bc9305864","first_seen":"2023-04-30T18:21:02Z","last_seen":"2025-04-06T22:37:18.406247Z","times_seen":64089,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/ico/apple-touch-icon-precomposed-20200819.png","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.390Z","timestamp":1701702850390,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/ico/apple-touch-icon-precomposed-20200819.png HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncontent-type: text/html\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":10344,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":120,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/login.php","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-04T15:14:08.580Z","timestamp":1701702848580,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/login.php HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-powered-by: PHP/7.2.34\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":147510,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":838,"timings":{"blocked":292,"dns":2,"connect":120,"send":0,"wait":250,"receive":0,"ssl":161},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/idp/co-branding?resource=co-branding\u0026lang=de\u0026provider=","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.154Z","timestamp":1701702850154,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /idp/co-branding?resource=co-branding\u0026lang=de\u0026provider= HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncontent-type: text/html\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":10344,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":122,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":120,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"biotecgt.com/.swissinfolog/resources/img/favicon.ico?v=20140709-1126","fqdn":"biotecgt.com","domain":"biotecgt.com","tld":"com"},"ip":{"addr":"170.10.164.144","port":443,"asn":32748,"as":"STEADFAST","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:10.391Z","timestamp":1701702850391,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"biotecgt.com","organization":""},"issuer":{"commonName":"cPanel, Inc. Certification Authority","organization":"cPanel, Inc."},"validity":{"start":"Mon, 09 Oct 2023 00:00:00 GMT","end":"Sun, 07 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"3D:F4:0A:6F:C6:DC:99:AC:60:0E:A3:4B:01:22:C2:9B:09:E2:2F:77","sha256":"7E:FF:3D:60:C4:A3:8D:06:04:83:8B:92:D7:47:32:81:9D:39:FB:2B:DB:A0:BA:5C:C7:61:13:3F:37:18:FB:60"}}},"request":{"raw":"GET /.swissinfolog/resources/img/favicon.ico?v=20140709-1126 HTTP/1.1\r\nHost: biotecgt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/.swissinfolog/login.php\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 11 Dec 2023 15:14:04 GMT\r\ncontent-type: image/x-icon\r\nlast-modified: Sun, 03 Dec 2023 06:01:28 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 159\r\ndate: Mon, 04 Dec 2023 15:14:04 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\\012- data","md5":"6d866d9c4568bf7fc03e597e74ce7e28","sha1":"e1b3d9f0e9cdcb785a94b6c1e1fe651a4ff98dcb","sha256":"7c1925da382279a72f94990d0a1456f78918619f35780ea0905e4ae0db684677","sha512":"7dc58e58fc991e2c9310e22a6761aaa398586082c13fd7863fcadd48e15cef8ed7337dc33d0acc0d0b9b698d4d26abbbe6995fa48d2c9ce1161b2f39fea2a381","ssdeep":"","tlshash":"53215d85ffcbd895e413ed317a81e1862c584d61eab09d8130a1f4ebeb716744c54778","first_seen":"2023-05-05T11:25:27Z","last_seen":"2026-04-03T10:09:30.194256Z","times_seen":2733,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - SwissPass","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with SwissPass phishing","tags":["swosspass","phishing","transport"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.cookielaw.org/logos/static/powered_by_logo.svg","fqdn":"cdn.cookielaw.org","domain":"cookielaw.org","tld":"org"},"ip":{"addr":"104.18.131.236","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://biotecgt.com/.swissinfolog/login.php","date":"2023-12-04T15:14:09.602Z","timestamp":1701702849602,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cookielaw.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E","sha256":"5D:29:49:EF:89:A4:F8:BC:B4:CD:29:93:B0:31:AF:43:44:26:3B:2D:58:4D:A9:F9:13:9D:2A:AE:7C:6C:BE:D2"}}},"request":{"raw":"GET /logos/static/powered_by_logo.svg HTTP/1.1\r\nHost: cdn.cookielaw.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://biotecgt.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Dec 2023 15:14:03 GMT\r\ncontent-type: image/svg+xml\r\ncontent-md5: Y+c301RBZNK39PvKQWrIBw==\r\nlast-modified: Sat, 02 Dec 2023 03:07:05 GMT\r\nx-ms-request-id: 7686745b-801e-0088-2dd3-24dc8a000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: max-age=86400\r\ncf-cache-status: HIT\r\nage: 46096\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 8304ff36ca880b69-OSL\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5194,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (5220), with no line terminators","md5":"38b5388f36f8f885deb26afdac0e3116","sha1":"112eccab1891a3a7cab1c5602ba72c9e127136e0","sha256":"a8562f11c5a80a5c1c4ab388cfa2a69598203a57a5c67d1f80512bddd80d09ef","sha512":"91ff3048dced0bb65c4bb6a2acb696af4d72af0c4c010e4a32ade58a0e7ad7c3eaa669aeac1cc2578ba809cdae6cb948620f6c007b41ea510bfb7bb5b8959b42","ssdeep":"96:GHD6VAMcWnVRSNUrN3Sky4gNeLSYiJ7iFsAkl2+heNm7iprXbep5Dkomn23b+WYv:G09bSNURZyNNnRJqsAehheImprmDko9S","tlshash":"4cb198f5aa45e2ac391e8984cd37a964651fb4eb7afe83d06192c332e40ede0f940c14","first_seen":"2023-04-30T18:21:02Z","last_seen":"2025-04-06T22:37:18.415935Z","times_seen":65494,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}