![\"\u56f31](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-1.png\")
\u30de\u30eb\u30a6\u30a7\u30a2\u306e\u914d\u5e03<\/b><\/b><\/h3>\n
\u79c1\u305f\u3061\u306e\u5206\u6790\u304b\u3089\u3001KRBanker\u306fWeb\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8 \u30ad\u30c3\u30c8(EK)\u304a\u3088\u3073\u60aa\u610f\u306e\u3042\u308b\u30a2\u30c9\u30a6\u30a7\u30a2\u653b\u6483\u3092\u4ecb\u3057\u3066\u914d\u4fe1\u3055\u308c\u3066\u304d\u305f\u3053\u3068\u304c\u4f3a\u3048\u307e\u3059\u3002KRBanker\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u306b\u4f7f\u308f\u308c\u3066\u3044\u308b\u3053\u306e\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8 \u30ad\u30c3\u30c8\u306fKaiXin\u3068\u3057\u3066\u77e5\u3089\u308c\u3066\u304a\u308a\u3001KRBanker\u3092\u914d\u4fe1\u3059\u308b\u30a2\u30c9\u30a6\u30a7\u30a2\u306fNEWSPOT\u3068\u547c\u3070\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n
2016\u5e743\u6708\u3001Unit 42\u306eBrad Duncan\u306fSANS<\/a>\u304a\u3088\u3073Malware-Traffic-Analysis.Net<\/a>\u306e\u305f\u3081\u306b2\u3064\u306e\u8a18\u4e8b\u3092\u66f8\u304d\u307e\u3057\u305f\u304c\u3001\u305d\u306e\u969b\u3001KaiXin EK\u304c\u5927\u97d3\u6c11\u56fd\u3067\u78ba\u8a8d\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u306b\u8a00\u53ca\u3057\u307e\u3057\u305f\u3002\u305d\u308c\u3089\u306e\u4e8b\u4f8b\u3067\u306f\u3001\u4fb5\u5bb3\u3092\u53d7\u3051\u305fWeb\u30b5\u30a4\u30c8\u307e\u305f\u306f\u5e83\u544a\u3092\u4ecb\u3057\u3066\u3001\u60aa\u610f\u306e\u3042\u308bJavaScript\u304cAdobe Flash\u306e\u8106\u5f31\u6027CVE-2014-0569\u307e\u305f\u306fCVE-2015-3133\u3092\u7a81\u304fEK\u3078\u3068\u8a98\u5c0e\u3057\u307e\u3057\u305f\u3002\u79c1\u305f\u3061\u306f\u30012\u3064\u306e\u4e8b\u4f8b\u306b\u304a\u3051\u308b\u6700\u5f8c\u306e\u30da\u30a4\u30ed\u30fc\u30c9\u304cKRBanker\u3067\u3042\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3057\u307e\u3057\u305f\u3002<\/p>\n \u5225\u306e\u914d\u5e03\u7d4c\u8def\u3068\u3057\u3066NEWSPOT\u3068\u547c\u3070\u308c\u308b\u60aa\u610f\u306e\u3042\u308b\u30a2\u30c9\u30a6\u30a7\u30a2 \u30d7\u30ed\u30b0\u30e9\u30e0\u304c\u3042\u308a\u307e\u3059\u3002NEWSPOT\u3068\u3044\u3046\u5546\u54c1\u306e\u30de\u30fc\u30b1\u30c6\u30a3\u30f3\u30b0\u8cc7\u6599\u306b\u3088\u308c\u3070\u3001\u30aa\u30f3\u30e9\u30a4\u30f3 \u30b7\u30e7\u30c3\u30d4\u30f3\u30b0 \u30b5\u30a4\u30c8\u306b\u95a2\u3057\u3066300%\u306e\u53ce\u76ca\u5897\u5927\u304c\u4fdd\u8a3c\u3055\u308c\u3066\u3044\u307e\u3059\u3002NEWSPOT\u306f\u30d6\u30e9\u30a6\u30b6\u306b\u5e83\u544a\u3092\u8868\u793a\u3059\u308b\u57fa\u672c\u7684\u306a\u5e83\u544a\u30d7\u30ed\u30b0\u30e9\u30e0\u3067\u3059\u304c\u3001\u5c11\u306a\u304f\u3068\u30822015\u5e7411\u6708\u4ee5\u964d\u3001\u30de\u30eb\u30a6\u30a7\u30a2\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3092\u958b\u59cb\u3057\u307e\u3057\u305f\u3002\u97d3\u56fd\u306e\u4e00\u90e8\u306eWeb\u30b5\u30a4\u30c8\u3092\u8a2a\u308c\u305f\u969b\u3001\u30e6\u30fc\u30b6\u30fc\u306fNEWSPOT\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3092\u8981\u6c42\u3059\u308b\u30d6\u30e9\u30a6\u30b6 \u30a2\u30c9\u30aa\u30f3\u306e\u30dd\u30c3\u30d7\u30a2\u30c3\u30d7\u306b\u6c17\u4ed8\u304f\u5834\u5408\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n \u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u308b\u3068\u3001\u3053\u306e\u30a2\u30c9\u30a6\u30a7\u30a2\u306f\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u30fc\u4e0a\u3067\u5b9f\u884c\u3055\u308c\u3001\u4e0b\u8a18URL\u304b\u3089\u8a2d\u5b9a\u306e\u53d6\u5f97\u3092\u958b\u59cb\u3057\u307e\u3059\u3002<\/p>\n www.newspot[.]kr\/config.php?sUID=[web site name]<\/span><\/p>\n \u30b5\u30fc\u30d0\u304c\u8fd4\u3057\u3066\u304d\u305f\u8a2d\u5b9a\u30c7\u30fc\u30bf\u306b\u306f<update>\u30bb\u30af\u30b7\u30e7\u30f3\u304c\u542b\u307e\u308c\u3066\u3044\u308b\u306e\u3067\u3001\u305d\u3053\u306b\u8a18\u8ff0\u3055\u308c\u3066\u3044\u308bURL\u304b\u3089\u30d5\u30a1\u30a4\u30eb\u3092\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u3057\u307e\u3059\u3002<\/p>\n \u3053\u308c\u306f\u5143\u6765NEWSPOT\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u66f4\u65b0\u306b\u4f7f\u308f\u308c\u3066\u304d\u305f\u3082\u306e\u304b\u3082\u3057\u308c\u307e\u305b\u3093\u304c\u3001KRBanker\u304a\u3088\u3073Venik\u306e\u3088\u3046\u306a\u30d0\u30f3\u30ad\u30f3\u30b0\u7528\u30c8\u30ed\u30a4\u306e\u6728\u99ac\u304c\u3053\u306e\u66f4\u65b0\u7d4c\u8def\u3092\u4ecb\u3057\u3066\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u3092\u79c1\u305f\u3061\u306f\u78ba\u8a8d\u3057\u307e\u3057\u305f\u3002\u56f34\u306b\u305d\u3046\u3057\u305fURL\u3092\u793a\u3057\u307e\u3059\u3002<\/p>\n KRBanker\u306fProcess Hollowing<\/a>\u3092\u5229\u7528\u3057\u3066\u611f\u67d3\u3057\u3066\u3044\u306a\u3044(\u7591\u308f\u3057\u304f\u306a\u3044)\u5b9f\u884c\u5f62\u5f0f\u30d5\u30a1\u30a4\u30eb\u306e\u4e2d\u306e\u30e1\u30a4\u30f3 \u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3057\u307e\u3059\u3002\u30d7\u30ed\u30bb\u30b9\u306f\u3001\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u52d5\u4f5c\u3057\u307e\u3059\u3002<\/p>\n \u5b9f\u884c\u304c\u6210\u529f\u3059\u308b\u3068\u3001\u3053\u306e\u30d7\u30ed\u30bb\u30b9\u304c\u30a4\u30f3\u30bf\u30fc\u30cd\u30c3\u30c8\u306b\u30a2\u30af\u30bb\u30b9\u3057\u3088\u3046\u3068\u3057\u3066\u3044\u308b\u3053\u3068\u304cWindows\u30d5\u30a1\u30a4\u30a2\u30a6\u30a9\u30fc\u30eb\u304b\u3089\u30e6\u30fc\u30b6\u30fc\u306b\u901a\u77e5\u3055\u308c\u307e\u3059\u3002\u3053\u306e\u30d7\u30ed\u30bb\u30b9\u304c\u3001\u5143\u3005\u3001\u611f\u67d3\u3057\u3066\u3044\u306a\u3044Microsoft\u30d5\u30a1\u30a4\u30eb\u306b\u95a2\u9023\u3057\u305f\u3082\u306e\u3067\u3042\u308b\u305f\u3081\u3001\u591a\u304f\u306e\u30e6\u30fc\u30b6\u30fc\u306f\u3053\u306e\u6d3b\u52d5\u3092\u8a31\u53ef\u3057\u3066\u3057\u307e\u3044\u304c\u3061\u3067\u3059\u3002<\/p>\n Dridex\u3084Vawtrak\u306a\u3069\u306e\u30d0\u30f3\u30ad\u30f3\u30b0\u7cfb\u30c8\u30ed\u30a4\u306e\u6728\u99ac\u306f\u3001\u4e3b\u306b\u3001Man-in-the-browser(MitB)\u624b\u6cd5\u3092\u4f7f\u7528\u3057\u3066\u3001\u76ee\u7684\u306e\u88ab\u5bb3\u8005\u304b\u3089\u8a8d\u8a3c\u60c5\u5831\u3092\u76d7\u307f\u51fa\u3057\u307e\u3059\u3002\u3057\u304b\u3057\u3001KRBanker\u306f\u300c\u30d5\u30a1\u30fc\u30df\u30f3\u30b0\u300d\u3068\u3057\u3066\u77e5\u3089\u308c\u308b\u7570\u306a\u308b\u624b\u6cd5\u3092\u4f7f\u7528\u3057\u307e\u3059\u3002\u3053\u306e\u624b\u6cd5\u3067\u306f\u3001\u30b5\u30a4\u30d0\u30fc\u72af\u7f6a\u8005\u306b\u3088\u3063\u3066\u6a19\u7684\u306b\u3055\u308c\u3066\u3044\u308b\u30d0\u30f3\u30ad\u30f3\u30b0 \u30b5\u30a4\u30c8\u306e\u3044\u305a\u308c\u304b\u306b\u30e6\u30fc\u30b6\u30fc\u304c\u30a2\u30af\u30bb\u30b9\u3092\u8a66\u307f\u305f\u3068\u304d\u306b\u3001\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u507d\u88c5Web\u30b5\u30a4\u30c8\u3078\u30ea\u30c0\u30a4\u30ec\u30af\u30c8\u3057\u307e\u3059\u3002\u507d\u306e\u30b5\u30fc\u30d0\u304c\u30aa\u30ea\u30b8\u30ca\u30eb\u306e\u30b5\u30fc\u30d0\u306b\u306a\u308a\u3059\u307e\u3057\u3001\u8a2a\u554f\u8005\u306b\u5f7c\u3089\u306e\u60c5\u5831\u3068\u8a8d\u8a3c\u60c5\u5831\u3092\u9001\u4fe1\u3059\u308b\u3088\u3046\u306b\u8981\u6c42\u3057\u307e\u3059\u3002<\/p>\n \u8a50\u6b3a\u7684\u306a\u30b5\u30fc\u30d0\u306e IP \u30a2\u30c9\u30ec\u30b9\u306f\u3001\u30de\u30eb\u30a6\u30a7\u30a2\u306b\u306f\u30cf\u30fc\u30c9 \u30b3\u30fc\u30c9\u3055\u308c\u3066\u3044\u307e\u305b\u3093\u3002KRBanker\u306f\u3001Web API\u3092\u901a\u3058\u3066\u4e2d\u56fd\u306eSNS\u3001Qzone\u306b\u30a2\u30af\u30bb\u30b9\u3059\u308b\u3053\u3068\u3067\u30b5\u30fc\u30d0 \u30a2\u30c9\u30ec\u30b9\u3092\u53d6\u5f97\u3057\u307e\u3059\u3002API\u306f\u3001\u6b21\u306eURL\u306bQQ\u756a\u53f7\u3092\u9001\u4fe1\u3059\u308b\u3053\u3068\u3067\u3001\u57fa\u672c\u7684\u306a\u30e6\u30fc\u30b6\u30fc\u60c5\u5831\u3092\u63d0\u4f9b\u3057\u307e\u3059\u3002<\/p>\n users.qzone.qq.com\/fcg-bin\/cgi_get_portrait.fcg?uins=[QQ ID Number]<\/span><\/p>\n \u305d\u306e\u5f8c\u3001\u30b5\u30fc\u30d0\u306f\u3001QQ ID\u756a\u53f7\u306b\u3088\u3063\u3066\u7279\u5b9a\u3055\u308c\u305fSNS\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u304b\u3089\u53d6\u5f97\u3057\u305f\u3001QQ ID\u756a\u53f7\u3001\u5199\u771f\u3078\u306e\u30ea\u30f3\u30af\u3001\u30cb\u30c3\u30af\u30cd\u30fc\u30e0\u304a\u3088\u3073\u305d\u306e\u4ed6\u306e\u60c5\u5831\u3067\u5fdc\u7b54\u3057\u307e\u3059\u3002\u30c8\u30ed\u30a4\u306e\u6728\u99ac\u306e\u4f5c\u6210\u8005\u306f\u3001\u300cnickname(\u30cb\u30c3\u30af\u30cd\u30fc\u30e0)\u300d\u30d5\u30a3\u30fc\u30eb\u30c9\u306b\u30d5\u30a1\u30fc\u30df\u30f3\u30b0 \u30b5\u30fc\u30d0 \u30a2\u30c9\u30ec\u30b9\u3092\u5165\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n \u4ee5\u4e0b\u306f\u3001\u5f8c\u304b\u3089\u30d5\u30a1\u30fc\u30df\u30f3\u30b0\u306e\u305f\u3081\u306bKRBanker\u306b\u3088\u3063\u3066\u62bd\u51fa\u3055\u308c\u308bIP\u30a2\u30c9\u30ec\u30b9\u300123.107.204[.]38\u3092\u542b\u3080\u5fdc\u7b54\u4f8b\u3067\u3059\u3002<\/p>\n \u6b21\u306b\u3001KRBanker\u306f\u3001\u4fb5\u5165\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u3067GetOEMCP() API\u3092\u5b9f\u884c\u3057\u3001\u57cb\u3081\u8fbc\u307f\u306eVBScript\u3068\u30b3\u30fc\u30c9 \u30da\u30fc\u30b8\u3092\u4f7f\u7528\u3057\u3066MAC\u30a2\u30c9\u30ec\u30b9\u3092\u53d6\u5f97\u3057\u307e\u3059\u3002\u305d\u306e\u5f8c\u3001\u6b21\u306eHTTP GET\u8981\u6c42\u3092\u9001\u4fe1\u3057\u3066\u3001\u4fb5\u5165\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u306bC2\u30b5\u30fc\u30d0\u3092\u767b\u9332\u3057\u307e\u3059\u3002<\/p>\n http:\/\/[IP address]\/ca.php?m=[encoded MAC Address]&h=[code page]<\/span><\/p>\n ALYac\u306e\u30ea\u30b5\u30fc\u30c1\u30e3\u30fc\u304c\u3001\u4ee5\u524d\u306b\u3001\u30db\u30b9\u30c8 \u30d5\u30a1\u30a4\u30eb\u306e\u5909\u66f4<\/a>\u304a\u3088\u3073\u30ed\u30fc\u30ab\u30ebDNS\u30d7\u30ed\u30ad\u30b7<\/a>\u624b\u6cd5\u3092\u4f7f\u7528\u3057\u3066HTTP\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u30ea\u30c0\u30a4\u30ec\u30af\u30c8\u3059\u308bKRBanker\u306b\u3064\u3044\u3066\u30ec\u30dd\u30fc\u30c8\u3057\u3066\u3044\u307e\u3059\u3002\u6700\u65b0\u30d0\u30fc\u30b8\u30e7\u30f3\u306e\u8105\u5a01\u306f\u3001JavaScript\u3092\u8a18\u8ff0\u3059\u308b\u3053\u3068\u3067\u5404URL\u306e\u9069\u5207\u306a\u30d7\u30ed\u30ad\u30b7 \u30a2\u30c9\u30ec\u30b9\u3092\u5b9a\u7fa9\u3067\u304d\u308bWindows\u7ba1\u7406\u8005\u3068\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u7ba1\u7406\u8005\u306b\u3068\u3063\u3066\u6b63\u898f\u306e\u95a2\u6570\u3067\u3042\u308bProxy Auto-Config (PAC)\u3092\u5229\u7528\u3057\u3066\u3044\u307e\u3059\u3002\u3053\u306e\u3053\u3068\u306f\u3001Fortinet\u306e\u30d6\u30ed\u30b0\u306e\u6295\u7a3f<\/a>\u3067\u3082\u8ff0\u3079\u3089\u308c\u3066\u3044\u307e\u3057\u305f\u3002\u653b\u6483\u8005\u306f\u3001\u30d5\u30a1\u30fc\u30df\u30f3\u30b0\u306e\u305f\u3081\u306b\u3053\u306e\u6a5f\u80fd\u3092\u60aa\u7528\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n \u3053\u308c\u3092\u8a2d\u5b9a\u3059\u308b\u305f\u3081\u3001\u30c8\u30ed\u30a4\u306e\u6728\u99ac\u306f\u30ed\u30fc\u30ab\u30eb \u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u3092\u8d77\u52d5\u3057\u3001\u6b21\u306e\u30ec\u30b8\u30b9\u30c8\u30ea \u30a8\u30f3\u30c8\u30ea\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002<\/p>\n HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\AutoConfigURL = http:\/\/127.0.0.1:[random]\/[random]<\/span><\/p>\n \u30ed\u30fc\u30ab\u30eb \u30d7\u30ed\u30ad\u30b7 \u30db\u30b9\u30c8\u304cJavaScript\u3092\u6697\u53f7\u5316\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n JavaScript\u3092\u5fa9\u53f7\u5316\u3059\u308b\u3068\u3001\u6a19\u7684\u3068\u3059\u308b\u30b5\u30a4\u30c8\u306e\u30ea\u30b9\u30c8\u3092\u78ba\u8a8d\u3059\u308b\u305f\u3081\u306b\u4f7f\u7528\u3055\u308c\u308bPAC\u306e\u95a2\u6570\u3001FindProxyForURL()\u3092\u691c\u51fa\u3067\u304d\u307e\u3059\u3002<\/p>\n \u30d6\u30e9\u30a6\u30b6\u304cWeb\u30b5\u30fc\u30d0\u3078\u306e\u63a5\u7d9a\u3092\u8a66\u307f\u308b\u3068\u3001\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u306f\u30ed\u30fc\u30ab\u30eb \u30d7\u30ed\u30ad\u30b7\u306b\u9001\u4fe1\u3055\u308c\u307e\u3059\u3002\u30d7\u30ed\u30ad\u30b7PAC\u306e\u60aa\u610f\u3042\u308bJavaScript\u306f\u3001FindProxyForURL()\u95a2\u6570\u3092\u4f7f\u7528\u3057\u3001\u6a19\u7684\u306e\u30ea\u30b9\u30c8\u3068\u7167\u5408\u3057\u3066\u30c9\u30e1\u30a4\u30f3\u3092\u30c1\u30a7\u30c3\u30af\u3057\u307e\u3059\u3002\u30a2\u30af\u30bb\u30b9\u3057\u3066\u3044\u308b\u30c9\u30e1\u30a4\u30f3\u304c\u30ea\u30b9\u30c8\u5185\u306e\u6a19\u7684\u306e\u3044\u305a\u308c\u304b\u3068\u4e00\u81f4\u3059\u308b\u5834\u5408\u306f\u3001\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u306f\u8a50\u6b3a\u7684\u306a\u30b5\u30fc\u30d0\u3078\u9001\u4fe1\u3055\u308c\u307e\u3059\u3002\u4e00\u81f4\u3057\u306a\u3044\u5834\u5408\u306f\u3001\u8981\u6c42\u3055\u308c\u305f\u6b63\u898f\u306e\u30c9\u30e1\u30a4\u30f3\u3078\u9001\u4fe1\u3055\u308c\u307e\u3059\u3002<\/p>\n \u4fb5\u5bb3\u3055\u308c\u305f\u30e6\u30fc\u30b6\u30fc\u304c\u6a19\u7684\u3068\u3055\u308c\u3066\u3044\u308bWeb\u30b5\u30a4\u30c8\u306e\u3044\u305a\u308c\u304b\u3092\u8a2a\u554f\u3059\u308b\u3068\u3001\u30e6\u30fc\u30b6\u30fc\u306b\u306f\u4ee5\u4e0b\u306e\u56f312\u306b\u793a\u3059\u3088\u3046\u306a\u30da\u30fc\u30b8\u304c\u8868\u793a\u3055\u308c\u307e\u3059\u3002\u30d6\u30e9\u30a6\u30b6\u306e\u30a2\u30c9\u30ec\u30b9 \u30d0\u30fc\u306b\u6709\u52b9\u306aURL\u304c\u8868\u793a\u3055\u308c\u3001\u6b63\u898f\u306eWeb\u30da\u30fc\u30b8\u3067\u3042\u308b\u304b\u306e\u3088\u3046\u306b\u898b\u3048\u307e\u3059\u3002\u305f\u3060\u3057\u3001\u3053\u308c\u306f\u88ab\u5bb3\u8005\u306e\u8a8d\u8a3c\u60c5\u5831\u3068\u30a2\u30ab\u30a6\u30f3\u30c8\u60c5\u5831\u3092\u76d7\u3080\u305f\u3081\u306e\u507d\u306eWeb\u30da\u30fc\u30b8\u3067\u3059\u3002<\/p>\n \u307e\u305f\u3001KRBanker\u306f\u6b21\u306e\u6d3b\u52d5\u3082\u5b9f\u884c\u3067\u304d\u307e\u3059\u3002<\/p>\n \u30d0\u30f3\u30ad\u30f3\u30b0\u7cfb\u30c8\u30ed\u30a4\u306e\u6728\u99ac\u3092\u4f7f\u7528\u3059\u308b\u653b\u6483\u8005\u306e\u7b2c1\u306e\u52d5\u6a5f\u306f\u3001\u5229\u76ca\u3067\u3059\u3002KRBanker\u306e\u80cc\u5f8c\u306e\u653b\u6483\u8005\u306f\u3001\u88ab\u5bb3\u8005\u304b\u3089\u306e\u53ce\u76ca\u3092\u6700\u5927\u5316\u3059\u308b\u305f\u3081\u306b\u3001\u65b0\u305f\u306a\u914d\u4fe1\u30c1\u30e3\u30cd\u30eb\u3092\u958b\u767a\u3057\u3001\u4f55\u5ea6\u3082\u30d5\u30a1\u30fc\u30df\u30f3\u30b0\u624b\u6cd5\u3092\u9032\u5316\u3055\u305b\u3001\u65e5\u3005\u65b0\u3057\u3044\u4e9c\u7a2e\u3092\u30ea\u30ea\u30fc\u30b9\u3057\u3066\u304d\u307e\u3057\u305f\u3002<\/p>\n \u3053\u306e\u8a18\u4e8b\u3067\u8aac\u660e\u3057\u305f\u3068\u304a\u308a\u3001\u8105\u5a01\u306f\u3001\u53e4\u3044\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8 \u30ad\u30c3\u30c8\u3068\u624b\u52d5\u3067\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u30a2\u30c9\u30a6\u30a7\u30a2\u3092\u901a\u3058\u3066\u914d\u4fe1\u3055\u308c\u307e\u3059\u3002\u5f71\u97ff\u3092\u6700\u5c0f\u9650\u306b\u3059\u308b\u306b\u306f\u3001\u3053\u306e\u3088\u3046\u306a\u6d3b\u52d5\u306e\u611f\u67d3\u7d4c\u8def\u3092\u7406\u89e3\u3059\u308b\u3053\u3068\u304c\u4e0d\u53ef\u6b20\u3067\u3059\u3002Palo Alto Networks Autofocus\u30e6\u30fc\u30b6\u30fc\u306f\u3001\u300cKRBanker\u300dAutofocus\u30bf\u30b0\u3092\u4f7f\u7528\u3057\u3066\u3053\u306e\u8105\u5a01\u3092\u8ffd\u8de1\u3067\u304d\u307e\u3059\u3002<\/p>\n KRBanker\u306e\u5146\u5019\u306f\u3001\u4ee5\u4e0b\u306eUnit 42\u306eGitHub\u30da\u30fc\u30b8\u3067\u78ba\u8a8d\u3067\u304d\u307e\u3059\u3002<\/p>\n![\"\u56f32](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-2.png\")
![\"\u56f33](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-3.png\")
![\"\u56f34](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-4.png\")
\u5b9f\u884c<\/b><\/b><\/h3>\n
\n
![\"\u56f35](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-5.png\")
![\"\u56f36](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-6.png\")
![\"\u56f37](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-7.png\")
\u30d5\u30a1\u30fc\u30df\u30f3\u30b0<\/b><\/h3>\n
\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7<\/b><\/b><\/h3>\n
![\"\u56f38](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-8.png\")
Proxy Auto-Config<\/b><\/b><\/h3>\n
![\"\u56f39](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-9.png\")
![\"\u56f310](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-10.png\")
![\"\u56f311](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-11.png\")
![\"\u56f312](\"https:\/\/www.paloaltonetworks.jp\/content\/dam\/paloaltonetworks-com\/ja_JP\/Images\/blog\/KRBanker-12.png\")
\n
\u7d50\u8ad6<\/b><\/b><\/h2>\n
\u5146\u5019<\/b><\/b><\/h3>\n