Re:first infection. (Score 1)

Once compiled, the machine code can simply be inserted into the payload as data. Yes, the Linux code must have been compiled on Linux, and the Win32 code on win32. But once you have the actual bytes of the machine code, you can relocate it anywhere you want. This isn't anything new to buffer overflow exploit writers.