MalwareBazaar Database
This page shows some basic information the YARA rule skip20_sqllang_hook including corresponding malware samples.
Database Entry
| YARA Rule: | skip20_sqllang_hook |
|---|---|
| Author: | Mathieu Tartare |
| Description: | YARA rule to detect if a sqllang.dll version is targeted by skip-2.0. Each byte pattern corresponds to a function hooked by skip-2.0. If $1_0 or $1_1 match, it is probably targeted as it corresponds to the hook responsible for bypassing the authentication. |
| Firstseen: | 2024-10-20 15:37:14 UTC |
| Lastseen: | 2025-12-09 20:11:47 UTC |
| Sightings: | 477 |
Malware Samples
The table below shows all malware samples that matching this particular YARA rule (max 1000).
| Firstseen (UTC) | SHA256 hash | Tags | Signature | Reporter |
|---|