Hi Choongmin,
Like Aboo mentioned, SSL Interception is crucial for this to work. Then you can create policy either on VPM or on CPL layers as below. You can format the rule as below to achieve the block
<proxy>
url.domain=drive.google.com url.path.prefix=file/d/xxxxxxxxxxxxxxxxxxxxxxx Deny
Note: Do not add the "?" and strings followed that for this match. Those are query parameters and can change dynamically