{"id":111795,"date":"2017-06-27T13:15:34","date_gmt":"2017-06-27T20:15:34","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=111795"},"modified":"2020-05-21T19:51:42","modified_gmt":"2020-05-22T02:51:42","slug":"palo-alto-networks-protections-petya-ransomware","status":"publish","type":"post","link":"https:\/\/www2.paloaltonetworks.com\/blog\/2017\/06\/palo-alto-networks-protections-petya-ransomware\/?lang=ja","title":{"rendered":"Palo Alto Networks Petya \u30e9\u30f3\u30b5\u30e0\u30a6\u30a7\u30a2\u653b\u6483\u306b\u5bfe\u3059\u308b\u30d7\u30ed\u30c6\u30af\u30b7\u30e7\u30f3"},"content":{"rendered":"

\u4f55\u304c\u8d77\u3053\u3063\u305f\u304b\uff1a<\/b><\/h3>\n

2017 \u5e74 6 \u6708 27 \u65e5\u3001Petya \u30e9\u30f3\u30b5\u30e0\u30a6\u30a7\u30a2\u306f\u3001\u653f\u5e9c\u3084\u91cd\u8981\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u306e\u30aa\u30da\u30ec\u30fc\u30bf\u3092\u542b\u3080\u8907\u6570\u306e\u7d44\u7e54\u306b\u5f71\u97ff\u3092\u4e0e\u3048\u59cb\u3081\u307e\u3057\u305f\u3002\u3053\u306e\u653b\u6483\u306f\u30012017 \u5e74 5 \u6708\u306e WanaCrypt0r \/ WanaCry \u653b\u6483\u3068\u540c\u69d8\u306e\u65b9\u6cd5\u3067\u5e83\u304c\u3063\u3066\u3044\u308b\u3088\u3046\u3067\u3001ETERNALBLUE \u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u30c4\u30fc\u30eb\u3092\u4f7f\u7528\u3057\u3066 Microsoft Windows SMB \u30d7\u30ed\u30c8\u30b3\u30eb\u7d4c\u7531\u3067\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3092\u901a\u904e\u3059\u308b\u53ef\u80fd\u6027\u304c\u9ad8\u3044\u3068\u601d\u308f\u308c\u307e\u3059\u3002 Palo Alto Networks \u306e\u304a\u5ba2\u69d8\u306f\u3001\u6b21\u4e16\u4ee3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u306e\u8907\u6570\u306e\u8981\u7d20\u306b\u308f\u305f\u3063\u3066\u4f5c\u6210\u3001\u914d\u4fe1\u3001\u65bd\u884c\u3055\u308c\u305f\u4fdd\u8b77\u6a5f\u80fd\u306b\u3088\u308a\u3001Petya \u306b\u3088\u308b\u653b\u6483\u304b\u3089\u81ea\u52d5\u7684\u306b\u4fdd\u8b77\u3055\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n

\u3069\u3046\u3084\u3063\u3066\u653b\u6483\u3055\u308c\u308b\u306e\u304b\uff1a<\/b><\/h3>\n

\u521d\u671f\u306e\u611f\u67d3\u7d4c\u8def\u306f\u4e0d\u660e\u3067\u3059\u304c\u3001Petya \u306f Microsoft Windows \u30b7\u30b9\u30c6\u30e0\u3067 ETERNALBLUE \u306e\u8106\u5f31\u6027 (CVE-2017-0144) \u3092\u60aa\u7528\u3057\u3066 SMB \u30d7\u30ed\u30c8\u30b3\u30eb\u3092\u4f7f\u7528\u3057\u3066\u4ed6\u306e\u30db\u30b9\u30c8\u306b\u5e83\u304c\u308a\u3088\u3046\u3068\u3057\u307e\u3059\u3002\u3053\u306e\u8106\u5f31\u6027\u306f\u30012017 \u5e74 4 \u6708\u306b Shadow Brokers \u30b0\u30eb\u30fc\u30d7\u306b\u3088\u3063\u3066\u516c\u958b\u3055\u308c\u30012017 \u5e74 3 \u6708\u306bMS17-010<\/a>\u00a0\u3067 Microsoft \u306b\u3088\u3063\u3066\u89e3\u6c7a\u3055\u308c\u307e\u3057\u305f\u3002\u611f\u67d3\u304c\u6210\u529f\u3059\u308b\u3068\u3001\u30de\u30eb\u30a6\u30a7\u30a2\u306f\u30e6\u30fc\u30b6\u30fc\u306e\u30b7\u30b9\u30c6\u30e0\u3092\u6697\u53f7\u5316\u3057\u3001\u30a2\u30af\u30bb\u30b9\u3092\u8fd4\u3059\u305f\u3081\u306b300 \u30c9\u30eb\u306e\u652f\u6255\u3044\u3092\u8981\u6c42\u3057\u307e\u3059\u3002 Petya \u653b\u6483\u30d7\u30ec\u30a4\u30d6\u30c3\u30af\u306e\u8a73\u7d30\u306a\u5206\u6790\u306b\u3064\u3044\u3066\u306f\u3001Unit42\u306e\u8105\u5a01\u30ea\u30b5\u30fc\u30c1\u30c1\u30fc\u30e0\u306e\u30d6\u30ed\u30b0<\/a>\u3092\u53c2\u7167\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n

\u963b\u6b62\uff1a<\/b><\/h3>\n

\u30d1\u30ed\u30a2\u30eb\u30c8\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u30b9\u306e\u304a\u5ba2\u69d8\u306f\u3001\u653b\u6483\u30e9\u30a4\u30d5\u30b5\u30a4\u30af\u30eb\u5168\u4f53\u306b\u308f\u305f\u308b\u8105\u5a01\u3092\u81ea\u52d5\u7684\u306b\u963b\u6b62\u3059\u308b\u4fb5\u5bb3\u9632\u6b62\u30d9\u30fc\u30b9\u306e\u30a2\u30d7\u30ed\u30fc\u30c1\u3092\u63a1\u7528\u3057\u305f\u6b21\u4e16\u4ee3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u3092\u901a\u3058\u3066\u4fdd\u8b77\u3055\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n