{"id":10651,"date":"2014-12-10T18:20:16","date_gmt":"2014-12-10T10:20:16","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=10651"},"modified":"2014-12-16T11:24:15","modified_gmt":"2014-12-16T03:24:15","slug":"%e7%b4%a2%e5%b0%bc%e5%bd%b1%e8%a6%96%ef%bc%88sony-pictures%ef%bc%89%e6%94%bb%e6%93%8a%e4%ba%8b%e4%bb%b6-%e6%b7%b1%e5%85%a5%e5%88%86%e6%9e%90%e7%be%8e%e5%9c%8b-fbi-%e6%89%80%e6%8f%90%e4%be%9b","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=10651","title":{"rendered":"< \u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u653b\u64ca\u4e8b\u4ef6 > \u6df1\u5165\u5206\u6790\u7f8e\u570b FBI \u6240\u63d0\u4f9b\u4e4b\u300c\u7834\u58de\u6027\u300d\u60e1\u610f\u8edf\u9ad4\u6a23\u672c"},"content":{"rendered":"<p>\u8da8\u52e2\u79d1\u6280 T rendLabs \u6700\u8fd1\u53d6\u5f97\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\uff08FBI\uff09\u572812\u67082\u65e5\u8b66\u544a\u7f8e\u570b\u516c\u53f8\u4e4b\u5831\u544a\u4e2d\u6240\u8ff0\u7684\u300c\u7834\u58de\u6027\u300d\u60e1\u610f\u8edf\u9ad4\u6a23\u672c\u3002\u6839\u64da<a href=\"https:\/\/www.reuters.com\/article\/2014\/12\/02\/us-sony-cybersecurity-malware-idUSKCN0JF3FE20141202\">\u8def\u900f\u793e<\/a>\u5831\u5c0e\uff0c\u5728<a href=\"https:\/\/time.com\/3612132\/sony-hack-north-korea-interview\/\">\u6700\u8fd1\u7684\u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u653b\u64ca\u4e8b\u4ef6<\/a>\u5f8c\uff0c\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\u767c\u51fa\u8b66\u8a0a\u901a\u77e5\u4f01\u696d\u5c0d\u9019\u65b0\u7684\u300c\u7834\u58de\u6027\u300d\u60e1\u610f\u8edf\u9ad4\u4fdd\u6301\u8b66\u89ba\u3002\u5728\u672c\u6587\u64b0\u5beb\u6642\uff0c\u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u5165\u4fb5\u5916\u6d29\u4e8b\u4ef6\u548c\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\u6240\u63d0\u60e1\u610f\u8edf\u9ad4\u9593\u7684\u95dc\u806f\u5c1a\u672a\u5f97\u5230\u78ba\u8a8d\u3002<\/p>\n<p><a href=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/12\/hacker.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter  wp-image-10652\" src=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/12\/hacker.jpg\" alt=\"\u99ed\u5ba2hacker\" width=\"433\" height=\"433\" srcset=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/12\/hacker.jpg 600w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/12\/hacker-150x150.jpg 150w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/12\/hacker-300x300.jpg 300w\" sizes=\"(max-width: 433px) 100vw, 433px\" \/><\/a><\/p>\n<p><a href=\"https:\/\/www.scmagazine.com\/fbi-warns-us-firms-of-data-wiping-malware-following-sony-attack\/article\/386267\/\">\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\u7684\u5099\u5fd8\u300c#A-000044-mw\u300d<\/a>\u63cf\u8ff0\u4e86\u60e1\u610f\u8edf\u9ad4\u7684\u884c\u70ba\uff0c\u64da\u5831\u5176\u6709\u80fd\u529b\u53bb\u8986\u84cb\u96fb\u8166\u786c\u789f\u7684\u6240\u6709\u8cc7\u6599\uff08\u5305\u62ec\u958b\u6a5f\u78c1\u5340\uff09\uff0c\u9019\u6703\u8b93\u96fb\u8166\u7121\u6cd5\u958b\u6a5f\u3002<\/p>\n<p>\u4e0b\u9762\u662f\u8da8\u52e2\u79d1\u6280\u7684\u8abf\u67e5\u5206\u6790\u7d50\u679c\uff1a<\/p>\n<p><strong><em>BKDR_WIPALL<\/em><\/strong><strong><em>\u60e1\u610f\u8edf\u9ad4\u5206\u6790<\/em><\/strong><\/p>\n<p>\u6211\u5011\u5c07\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\u5831\u544a\u4e2d\u4ecb\u7d39\u7684\u60e1\u610f\u8edf\u9ad4\u5075\u6e2c\u70baBKDR_WIPALL\u3002\u4e0b\u9762\u662f\u9019\u653b\u64ca\u611f\u67d3\u93c8\u7684\u5feb\u901f\u6982\u89bd\u3002<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/WIPALL-infection-chain2.jpg\" alt=\"\" width=\"480\" height=\"375\" \/><\/p>\n<p>\u9019\u88e1\u7684\u4e3b\u8981\u7a0b\u5f0f\u70badiskpartmg16.exe\uff08\u6aa2\u6e2c\u70baBKDR_WIPALL.A\uff09\u3002BKDR_WIPALL.A\u7684overlap\u6709\u4e00\u7d44\u52a0\u5bc6\u7684\u4f7f\u7528\u8005\u540d\u7a31\u548c\u5bc6\u78bc\uff0c\u5982\u4e0b\u5716\u6240\u793a\uff1a<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_1.jpg\" alt=\"\" width=\"617\" height=\"61\" \/><\/p>\n<p><em>\u57161\u3001BKDR_WIPALL.A\u7684overlap\u5305\u542b\u52a0\u5bc6\u7684\u4f7f\u7528\u8005\u540d\u7a31\u548c\u5bc6\u78bc<\/em><\/p>\n<p>\u9019\u4e9b\u4f7f\u7528\u8005\u540d\u7a31\u548c\u5bc6\u78bc\u88ab\u767c\u73fe\u5728\u60e1\u610f\u8edf\u9ad4\u6a23\u672c\u7684overlap\u5167\u7528XOR 0x67\u52a0\u5bc6\uff0c\u7136\u5f8c\u7528\u4f86\u767b\u5165\u5171\u4eab\u7db2\u8def\u3002\u4e00\u65e6\u767b\u5165\uff0c\u60e1\u610f\u8edf\u9ad4\u6703\u5617\u8a66\u6388\u4e88\u6240\u6709\u4eba\u5b8c\u5168\u7684\u5b58\u53d6\u6b0a\u9650\u4f86\u5b58\u53d6\u7cfb\u7d71\u6839\u76ee\u9304\u3002<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_2.jpg\" alt=\"\" width=\"522\" height=\"569\" \/><\/p>\n<p><em>\u57162\u3001\u60e1\u610f\u8edf\u9ad4\u767b\u5165\u5230\u7db2\u8def\u7684\u7a0b\u5f0f\u78bc\u7247\u6bb5<\/em>\u00a0<!--more--><\/p>\n<p>\u690d\u5165\u7684net_var.dat\u5305\u542b\u76ee\u6a19\u4e3b\u6a5f\u540d\u7a31\u5217\u8868\uff1a<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_3-2.jpg\" alt=\"\" width=\"231\" height=\"576\" \/><\/p>\n<p><em>\u57163\u3001\u76ee\u6a19\u4e3b\u6a5f\u540d\u7a31<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>\u4e0b\u4e00\u500b\u76f8\u95dc\u7684\u60e1\u610f\u8edf\u9ad4\u662figfxtrayex.exe\uff08\u5075\u6e2c\u70baBKDR_WIPALL.B)\uff0c\u7531BKDR_WIPALL.A\u6240\u690d\u5165\u3002\u5728\u5b83\u9032\u884c\u771f\u6b63\u7684\u60e1\u610f\u884c\u70ba\u524d\u6703\u5148\u4f11\u772010\u5206\u9418\uff08\u6216\u5982\u4e0b\u6240\u793a\u7684600,000\u6beb\u79d2\uff09\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_4.jpg\" alt=\"\" width=\"694\" height=\"54\" \/><\/p>\n<p><em>\u57164\u3001BKDR_WIPALL.B\uff08igfxtrayex.exe\uff09\u4f11\u772010\u5206\u9418<\/em><\/p>\n<p>&nbsp;<\/p>\n<p><em>\u00a0<\/em><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_5-real.jpg\" alt=\"\" width=\"391\" height=\"56\" \/><\/p>\n<p><em>\u00a0<\/em><em>\u57165\u3001\u52a0\u5bc6\u7684\u4f7f\u7528\u8005\u540d\u7a31\u548c\u5bc6\u78bc\u5217\u8868\u4e5f\u51fa\u73fe\u5728BKDR_WIPALL.B<\/em><\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_5.jpg\" alt=\"\" width=\"620\" height=\"605\" \/><\/p>\n<p><em>\u57166\u3001Igfxtrayex.exe\u4e3b\u8981\u884c\u70ba\u7684\u7a0b\u5f0f\u78bc\u7247\u6bb5\uff08BKDR_WIPALL.B\uff09<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>\u9019\u500b\u60e1\u610f\u8edf\u9ad4\u7684\u884c\u70ba\u9664\u4e86\u6703\u522a\u9664\u4f7f\u7528\u8005\u6a94\u6848\u5916\uff0c\u9084\u5305\u62ec\u505c\u6b62Microsoft Exchange Information Store\u670d\u52d9\u3002\u7576\u5b83\u505a\u5b8c\u5f8c\uff0c\u60e1\u610f\u8edf\u9ad4\u6703\u518d\u4f11\u7720\u5169\u500b\u5c0f\u6642\u3002\u63a5\u8457\u5f37\u5236\u7cfb\u7d71\u91cd\u958b\u6a5f\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_6.jpg\" alt=\"\" width=\"582\" height=\"154\" \/><\/p>\n<p><em>\u5716\u4e03\u3001\u5f37\u5236\u91cd\u958b\u6a5f\u7684\u7a0b\u5f0f\u78bc\u7247\u6bb5<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>\u5b83\u9084\u6703\u4ee5\u4e0b\u5217\u53c3\u6578\u57f7\u884c\u6578\u500b\u540d\u70ba<em>taskhost{\u96a8\u6a5f2\u5b57\u5143}.exe<\/em>\u7684\u81ea\u8eab\u8907\u672c\uff1a<\/p>\n<p>&nbsp;<\/p>\n<ul>\n<li>taskhost{\u96a8\u6a5f2\u5b57\u5143}.exe -w \u2013 \u690d\u5165\u4e26\u57f7\u884c\u5143\u4ef6<em>Windows\\iissvr.exe<\/em><\/li>\n<li>taskhost{\u96a8\u6a5f2\u5b57\u5143}.exe -m \u2013 \u690d\u5165\u4e26\u57f7\u884c<em>Windows\\Temp\\usbdrv32.sys<\/em><\/li>\n<li>taskhost{\u96a8\u6a5f2\u5b57\u5143}.exe -d \u2013 \u522a\u9664\u6240\u6709\u56fa\u5b9a\u5f0f\u6216\u9060\u7aef\uff08\u7db2\u8def\uff09\u786c\u789f\u5167\u7684\u6a94\u6848<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_8-real.jpg\" alt=\"\" width=\"544\" height=\"288\" \/><\/p>\n<p><em>\u57168\u3001\u60e1\u610f\u8edf\u9ad4\u522a\u9664\u5728\u56fa\u5b9a\u5f0f\u548c\u7db2\u8def\u78c1\u789f\u6a5f\u5167\u7684\u6240\u6709\u6a94\u6848\uff08\u683c\u5f0f *.*\uff09<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>\u60e1\u610f\u8edf\u9ad4\u5143\u4ef6\u88ab\u52a0\u5bc6\u548c\u5132\u5b58\u5728\u4ee5\u4e0b\u8cc7\u6e90\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_7.jpg\" alt=\"\" width=\"630\" height=\"500\" \/><\/p>\n<p><em>\u57169\u3001BKDR_WIPALL.B\u60e1\u610f\u8edf\u9ad4\u5143\u4ef6<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>\u6b64\u5916\uff0cBKDR_WIPALL.B\u5b58\u53d6\u5b83\u8a66\u5716\u8986\u5beb\u7684\u5be6\u9ad4\u78c1\u789f\u6a5f\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_10-real.jpg\" alt=\"\" width=\"500\" height=\"91\" \/><\/p>\n<p><em>\u571610\u3001BKDR_WIPALL.B\u8986\u5beb\u5be6\u9ad4\u78c1\u789f\u6a5f<\/em><\/p>\n<p>\u540c\u7684WIPALL\u60e1\u610f\u8edf\u9ad4\u5bb6\u65cf\uff0c\u5176\u8b8a\u7a2eBKDR_WIPALL.D\u690d\u5165BKDR_WIPALL.C\uff0c\u5b83\u63a5\u8457\u6703\u5728Windows\u76ee\u9304\u4e2d\u690d\u5165\u6a94\u6848<em>walls.bmp<\/em>\u3002BMP\u6a94\u5982\u4e0b\u5716\u6240\u793a\uff1a<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone\" src=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/files\/2014\/12\/wipall_wallpaper2.jpg\" alt=\"\" width=\"600\" height=\"338\" \/><\/p>\n<p><em>\u571611\u3001\u690d\u5165\u7684\u684c\u5e03<\/em><\/p>\n<p>&nbsp;<\/p>\n<p>\u9019\u4f3c\u4e4e\u8ddf<a href=\"https:\/\/www.reuters.com\/article\/2014\/11\/29\/us-sony-cybersecurity-northkorea-idUSKCN0JD0KA20141129\">\u6700\u8fd111\u670824\u65e5\u7684\u7d22\u5c3c\u88ab\u99ed<\/a>\u76f8\u95dc\u5831\u5c0e\u5167\u63cf\u8ff0\u7684\u684c\u5e03\u76f8\u540c\uff0c\u51fa\u73fe\u300cHacked by #GOP\u300d\u3002\u6240\u4ee5\u6211\u5011\u6709\u7406\u7531\u76f8\u4fe1\u9019\u662f\u548c\u6700\u8fd1\u7528\u65bc\u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u653b\u64ca\u5167\u76f8\u540c\u7684\u60e1\u610f\u8edf\u9ad4\u3002<\/p>\n<p>&nbsp;<\/p>\n<p>\u6ce8\u610f\uff0cBKDR_WIPALL.C\u4e5f\u662f\u690d\u5165\u548cBKDR_WIPALL.D\u76f8\u540c\u76ee\u9304\u7684igfxtrayex.exe\u3002<\/p>\n<p>\u6211\u5011\u5c0d\u7d22\u5c3c\u88ab\u653b\u64ca\u4e8b\u4ef6\u7684\u5831\u5c0e\u96a8\u8457\u6211\u5011\u770b\u5230\u66f4\u591a\u767c\u5c55\u800c\u7e7c\u7e8c\u4e0b\u53bb\u3002\u9019\u88e1\u662f\u8ddf\u6b64\u4e8b\u4ef6\u6709\u95dc\u7684\u6587\u7ae0\u5217\u8868\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/an-analysis-of-the-destructive-malware-behind-fbi-warnings\/\">\u5206\u6790\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\u8b66\u8a0a\u80cc\u5f8c\u7684\u7834\u58de\u6027\u60e1\u610f\u8edf\u9ad4<\/a> \u2013 \u5206\u6790\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\uff08FBI\uff09\u95dc\u65bc\u8b66\u544a\u7f8e\u570b\u4f01\u696d\u7684\u5831\u544a\u4e2d\u6240\u63d0\u5230\u7684\u300c\u7834\u58de\u6027\u300d\u60e1\u610f\u8edf\u9ad4<\/li>\n<li><a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/wipall-malware-leads-to-gop-warning-in-sony-hack\/\">WIPALL\u60e1\u610f\u8edf\u9ad4\u5e36\u4f86\u7d22\u5c3c\u88ab\u99ed\u4e8b\u4ef6\u7684#GOP\u8b66\u544a<\/a> \u2013 \u6b64\u6587\u7ae0\u8a0e\u8ad6\u5176\u4ed6WIPALL\u60e1\u610f\u8edf\u9ad4\u8b8a\u7a2e\u548c\u5b83\u5011\u7684\u4e3b\u8981\u884c\u70ba\u9023\u7d50\u5230\u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u54e1\u5de5\u53d7\u611f\u67d3\u96fb\u8166\u7684#GOP\u8b66\u544a<\/li>\n<li><a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/cyber-attacks\/the-hack-of-sony-pictures-what-you-need-to-know\">\u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u88ab\u99ed\uff1a\u6211\u5011\u77e5\u9053\u4ec0\u9ebc\u548c\u4f60\u8a72\u77e5\u9053\u4ec0\u9ebc<\/a> \u2013\u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u53d7\u99ed\u6642\u9593\u8868<\/li>\n<li><a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/cyber-attacks\/the-hack-of-sony-pictures-what-you-need-to-know\">\u7d22\u5c3c\u5f71\u8996\uff08Sony Pictures\uff09\u4f01\u696d\u7db2\u8def\u906d\u53d7\u91cd\u5927\u653b\u64ca\uff1a\u70ba\u4f55\u4f60\u9700\u8981\u9818\u5148\u91dd\u5c0d\u6027\u653b\u64ca\u4e00\u6b65<\/a> \u2013 \u8ac7\u8ad6\u56de\u61c9\u91dd\u5c0d\u6027\u653b\u64ca<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p>\uff20\u539f\u6587\u51fa\u8655\uff1a<a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/an-analysis-of-the-destructive-malware-behind-fbi-warnings\/\">An Analysis of the \u201cDestructive\u201d Malware Behind FBI Warnings<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u8da8\u52e2\u79d1\u6280 T rendLabs \u6700\u8fd1\u53d6\u5f97\u7f8e\u570b\u806f\u90a6\u8abf\u67e5\u5c40\uff08FBI\uff09\u572812\u67082\u65e5\u8b66\u544a\u7f8e\u570b\u516c\u53f8\u4e4b\u5831\u544a\u4e2d\u6240\u8ff0\u7684\u300c\u7834\u58de\u6027 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wpscppro_dont_share_socialmedia":false,"_wpscppro_custom_social_share_image":0,"_facebook_share_type":"","_twitter_share_type":"","_linkedin_share_type":"","_pinterest_share_type":"","_linkedin_share_type_page":"","_instagram_share_type":"","_medium_share_type":"","_threads_share_type":"","_google_business_share_type":"","_selected_social_profile":[],"_wpsp_enable_custom_social_template":false,"_wpsp_social_scheduling":{"enabled":false,"datetime":null,"platforms":[],"status":"template_only","dateOption":"today","timeOption":"now","customDays":"","customHours":"","customDate":"","customTime":"","schedulingType":"absolute"},"_wpsp_active_default_template":true},"categories":[10,1856,8,179],"tags":[45,1817,1860,699,2368,107],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/10651"}],"collection":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=10651"}],"version-history":[{"count":0,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/10651\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=10651"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=10651"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=10651"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}