Potentially Malicious Activity
msgsndr.com
"It utilizes redirect cloaking, originating from an obscure domain (msgsndr.com) and redirecting to a legitimate Zoom meeting page. This technique is a common evasion tactic to bypass security analysis, indicating malicious intent despite the benign appearance of the final destination. Suspicious obfuscated javascript links were also observed."
Note: This finding is based on scans of specific URLs on the domain, not necessarily the root domain itself.
URLert analyzed recent scan activity for msgsndr.com and found 1 result.
| Status | Target URL | Time |
|---|---|---|
| Malicious | https://services.msgsndr.com/urls/l/9hXsUmM-D | 1mo ago |
Historical and current IP address mappings for this domain.
| IP Address / Infrastructure | Status | Subdomains | Last Seen |
|---|---|---|---|
CLOUDFLARENET - Cloudflare, Inc. (AS13335) | Active | msgsndr.com | Today |
CLOUDFLARENET - Cloudflare, Inc. (AS13335) | Active | msgsndr.com | Today |
Run a real-time investigation to understand the specific threats on any URL from this domain.
This assessment is based on automated analysis and may not be definitive.
Always verify independently before taking action.
Real experiences from people who visited this domain