| /* | |
| ********************************************************************* | |
| Part of UEFI DXE driver code that injects Hyper-V VM exit handler | |
| backdoor into the Device Guard enabled Windows 10 Enterprise. | |
| Execution starts from new_ExitBootServices() -- a hook handler | |
| for EFI_BOOT_SERVICES.ExitBootServices() which being called by | |
| winload!OslFwpKernelSetupPhase1(). After DXE phase exit winload.efi | |
| transfers exeution to previously loaded Hyper-V kernel (hvix64.sys) |
| from transaction_pb2 import Transaction, Reply, Command | |
| from rc4 import RC4 # https://github.com/bozhu/RC4-Python | |
| import socket | |
| import hexdump | |
| import random | |
| import struct | |
| import telnetlib | |
| import sys |
You might want to read this to get an introduction to armel vs armhf.
If the below is too much, you can try Ubuntu-ARMv7-Qemu but note it contains non-free blobs.
First, cross-compile user programs with GCC-ARM toolchain. Then install qemu-user-static (or qemu-arm-static in older versions) so that you can run ARM executables directly on linux