From 278c9423e8902dfaf1051a07dae092b01dcdf515 Mon Sep 17 00:00:00 2001
From: SilicaAndPina <earsyum@gmail.com>
Date: Fri, 6 Dec 2019 01:58:44 +1300
Subject: [PATCH] Add src

---
 PESubsystem/.vs/PESubsystem/v15/.suo          | Bin 0 -> 39424 bytes
 PESubsystem/PESubsystem.sln                   |  22 ++++
 PESubsystem/PESubsystem/App.config            |   6 ++
 PESubsystem/PESubsystem/PESubsystem.csproj    |  52 ++++++++++
 PESubsystem/PESubsystem/Program.cs            |  94 ++++++++++++++++++
 .../PESubsystem/Properties/AssemblyInfo.cs    |  36 +++++++
 6 files changed, 210 insertions(+)
 create mode 100644 PESubsystem/.vs/PESubsystem/v15/.suo
 create mode 100644 PESubsystem/PESubsystem.sln
 create mode 100644 PESubsystem/PESubsystem/App.config
 create mode 100644 PESubsystem/PESubsystem/PESubsystem.csproj
 create mode 100644 PESubsystem/PESubsystem/Program.cs
 create mode 100644 PESubsystem/PESubsystem/Properties/AssemblyInfo.cs

diff --git a/PESubsystem/.vs/PESubsystem/v15/.suo b/PESubsystem/.vs/PESubsystem/v15/.suo
new file mode 100644
index 0000000000000000000000000000000000000000..1ace1b5b6580c1bd4c9170d01989aa5e2086e440
GIT binary patch
literal 39424
zcmeHQ-)|#F9baEt=v@n?y>gUNuI_P^{y4ji<2cS8*PeeQcey5aX`TB)F*J_t+$HD4
zAx`dx?)p?7Dix$6AzC3JQ3)P^3ehJ7;-QoxB#LMSDgvJ1FF-sXUTBZcXJ#kfUGJ`U
z?M)lIJJEM{y*o4C`ObXjJKy=v%r|epb^AYFe)aBuYL@V*c7yib^_|*B4DTa`XYCW3
z_5gnK-Fw%sU*{)2<1q|<R0B_H4g9TZQEgmX!F^4;!lv{b_GmY4wz-j4>@rwA{M55c
zKY1rI#E<vL7&E}w(3Z4GU|+z~xOUktspGpn+Kx^9taitUh7S!qgMCF%_=$H_tD^*K
zS`AP{U6cVeJ)YBTe;4?VA+s}jXF92E083q41pS0_2FwM#S#v_HzX$#Z>E40gUg@tR
z?yvOp590nV6K>N$*%C(?9|jx%!~l-~9s(o){Qem3!+;cE1ds-d0y2Oxz(K$vz!w3B
z0gnQh?g;K#Kn{=x6aeFZ3BXYR+i4PT9Pl`RX$CC>+5c}s9l3?M%qvG0(EmS%NUwcH
z##H^UhyE}4U$u)He)Vky4*~Xn-}uQ}LH7R}k)NObe*y7T|5x?KJSYd)hLqzU1>6kS
z3D^a=1wj5Mu<33Cununr+yU4PxD)V6z#hP-0CxdC4Y(V?bQJlY1?&af3y1>l1MCBQ
z4zM5adBFXEF8~Iyzo8noRmfq)YiJj=WsG)fxO*M<&^#jCgYkz$*~bASOulu$F5xqE
zM}}G8Z36EU#=0g(!lHIwjKS+#MU0G18O`y^@$UwFC69W=zlgZxZ3fDn3NS8<(Z41}
zd?k}=__B^txrO_?82`^BL-sd@DeV;MAcpZOhw*C&_dLd-3EYP<mW|`xFusfcGJpiW
z<?%I(m`O4I9RdC9Pl~BTrX4QqS1Jni9%?yjsE0E2kO{Oy9lx8Jxfb%MBkG4Wac$Mf
zLEvYfro8Z4|3>@;<ja;`)^k21w4f^9UP1{PD90kOE(+`|tg7_X0d_=o<0oa0SNvZ>
z-0zcV5Zv&e0(RC+L1=<ynZR<513zUUWt&(0M*54OtS&fR(kSbB0TiFZ+ckk%ez73d
ze;xq;QQlG(d&PeeaW8VfKsc$*L;Icvwl#2;xs6W?4NAsyy6)?O|EH1JX+6U{sHX&I
z;>{vz`%+seoG{DxO8+J84DPYzS7ZI30zXshFKbm`uUfd?j^oT2NI%Cw>NHz{ztemO
z@+ZQvmgDnQ;4h$7E<)N+x3&x5Ki~R~vHp*t)vKcJS0MZAXpITcBiI^i;EGNG^&g?m
zaVwx3`g3Uc3dSGue*-;k1!bAi`N6H<t8%gaiB|>n-tEr$g_r~5Zr}eo52su>iBZW-
z`e_>FkHXEn8(#H|a~#S`2D6l(1>OzR`ugU4d`)NusthuX@k;sY7r(Ln$zSupc@BSU
z@iRi=RiFiM4C)-BUC5sTvQ_k3@#j#68p?11HQxYla?Eop#{)Y3)QP>;e-?3H&`Go6
zXMeAt1fAMlPYzvqhtR*NV|&Ga1aX!AV~1ak@>P_gD(o?C<w<wZ{*Srfr~bh{$bP}`
zkGS1JH~JUnH+N8BMX=J}!hZ#vKQDTrjA?&m|K}Wsd3vpXH~yanz01H#JDgD$a^gXb
z|9<-)b<bIy94r0y{BJCYo>0G~fS+?j@{?Eksd_o_pTtB7BrS1S^n_LDC)7-+3G%Hm
zfd9li^IjkLsro4Wo4WKkw8#{$c}V3L^z8)h6L=cJUje_L-jtH<vm@xgzU!Z?caW1~
z1aJ6f5pNphE2A#VoS^z&6nS~Af6mtw{l=D^M*f@yNJ$(A)$EHaLJmxz-pfKuZ^Q4K
zexMiQHSa+Lzx*ErPGcVZjGwZ|2(<t3x1IfmIu`X@@~>a}564Hp_MZok=0U(ifQJFf
z{u{^hBY*^edQ=iH44{tc$NsD6&LLeMpnj|SF}#}u90xoOm;&(I3H?5U`xAgC0Yw01
z>L~!{HfI250gV3??q3F!0AB%o74S4*4!~LEJfH%o0yx?&0L}qaIn=$5cgu$N$hzmi
zHl;l1HjGbCsG+3WEP6`UOW74-eJZSeihD2bOc{Cn!8zm`fIL<!O8R)iISFNM6w+T=
zWuma0UB<jTjh<1$n6L=W;as5!Sitxg74zsObSGMKqTtJQJXaB~f%vo;(Z*E5XeX^X
zxqNZvcRznH{c_`U_DA1|-TKnxH?Ho**mOKs%+H}b6;U3}3FLgNggY&TP3R{j<ZHIx
zH1X~taJBGrBv<&O2K?rE2h+`<Ohv?<7kM)sH6g$6<0x?xqa^EONxSXY{~YFugON+v
z!?rI~4bZ;?sucy&1{p`4(?&x3WD|3~C0wZyseo3@Q!2N#xogmCR?tRKaMTQ>(o8;2
z@zoY6?-x+(b^K8l6wnGe#6OA^vsp;CEYgpQRJ1T165K-`Qcp=dk*gBAtw@d>vh=j6
zuFItfk%PQY^QeJ`*$y&r*2?*dqP<0hQ|rg|960l*&T<7Ux(X_WQI>h|-@2&38Ym;z
zaz;nlDzzSko8>Tu0)EKeXVi(vneDwSuAM-w%;H;1FS>;C(}K<(kU|?J0MsRiQCnkp
zTSX}rP+HdYI=)>(Iafr9X?v%3%hHnX8OX6mb5oPF>&U*Mq=Dpce&bjpOROxFEUmGB
zO6^(MF-pR+Q319(;>{u^Td0JxNNU<?IRI%Q`@OV59@c3aL7F5Wi}I2yIa8{m6|yKj
zZ5NC9&2??k(<(2=QM)#7m4!7(>2d}9M@utt%T@U5rVM-<H9rbWqo`MDCy$|)C%}IN
z=<F$Q?-(Ek7=e@=$5Te6NZ`#7V&+h1BSNolm5kbntmRdKllBglz0^kGBud473azw3
zQ8j{c4}+>QN<E5llByb>`IN$S6n~_J_jx=m;GV?a5IC!hl(eFi@hkX}k%!Z$HP#(h
zA~-Wjp(LCwaeX2QV95%2VresIjS<uw*D7-2YXP*8UnrXk<5QF5UTQs(d(HgqJlZ{p
z`j9=Eyg|!A)Y3kx)!KWkeNT1feASC3r<cItO<*K{a<9fbXsP0<F4jHH;ZDA0zfvO&
zDWrt!9}0`;b!ya&qwU!5%AV+)>ti}Qx8kKfrmoeB>ZyocvkrMESN&Gd;!?6xPIs;g
zuAKHON1qUs$FZx2W7MiAdZ{(^E4^nSv+ACx>}NT}HB0JugU-FGHMvh>Mf;j3dYAf&
zd)vqCIQky<gHR*v++V3zD0tpC<?Y!0&ZJpJYQEHmrA8~~?z7-fuH{jiEQ&Fe+GR!P
zE^^NW$6cn2LMLy<En)V>xdOEuDYeyHgmZ;ud|O5g&JVeJMed*A9HY9KjxwF=d2&Ao
z<vz8N!Q=|sPukni%t1;wLsSv^T}QLZKF;6GTAYeuNBM_Mui-8!bL}XdsHN>XYe#l9
z*w5o;i*~8?weyaOVMqBK>at(;qL!9x<OVw`2T|Ll70*aFXTTg8T6(cvO$?46OnaJ{
zeyLg6QQgn&@1!rbx4$)}wI-BK)w&n+<5)F7MTVj8Yrw3vo`zJX?%L8qr_o#FTiX2M
zu=&xhorHZ)tt4?iQh|=iRUT@-n)U~PztN#xbL&m}4uXyfY~AaEp0@{r9%;d>V@5DI
zZPXMt%fX>%9kX58K5z6T&v7l9eWr<frH}c{O2=iaf20P89$HkmwytS^8VEk44TPhR
z<UURN<3Lcgh;=pY^k6&vWgsY$=bSH~wYW2Y_N;!@78I{3Nyn8luBs18OI<{7Vy{x`
zouurq1Hpr&j8;+Zf1({#>a6`K2f0RD2Mr6LsWs}V-~B4x?WvM)$%li`R_(JU5Y|PA
zZ0<PdA~BNO*j=*CRJ0a+9Z>ne_X%zm$=8F`+TklPB6A-!fuWncu+MatX5E0PGUB0<
z4uNNBBz`1{XnX8;Q96G34U!WZ;k%KoYD6xKaXY3uP|fX)++Nkb+0*Gg%jZBFcfs-V
zF>XRM{&549{BwU&vD6)Tc@ITx|1IxkAO7aAkG=Z$AHTKxhi7h^(%$~%zt29m?-%2*
z9DJwp(tj`Wcr-#$%Pida`g^bMo%+G|sy}^k@4v>JV#@g5u5#T=?kQXZ4({2Z7QBHf
zmiwx>-gg+@oEQ#a7Ncob#eS}&*eA#H=G<47#-1&nD(8-_Ay{|Pc*-Kin0QKJKTrZO
z$Dog<#FeRX+B2{PRk4%Nj8~poG-4%(n&YUlNtR&Tn}y$pAj@_L6a-BzS6sQC%Kf-C
z&AQ7rj**xrO6k4eJf7;P9b-MPw+2ZeSFY6gNxx;;g|cK(PHI6HkxL$B=cxm>1W$Q5
z=X?lXRp2@L-S`pF-i#CuCh&K4IGr5Jjpj#V>51%6EHyNej%CNj(y?SAksr&X#xnWQ
z+%wl^#)}*C%`46I+H%S89IrH2*BVRLDhEp&&DvVCR4cDFuav5d%EoeSWxZLtxY*n%
z*Q3q#jp||}noJChmYASc!MD{~b2CrV^IGHFT6r0HU%PfSo6e7>QrS!_F`mlCQWN=f
zER#uRV~KPsnHf%uq|&3QXCP2EH;peI88Ffc14YlSna$Qc<A-aIOmdBZ`;44e+WLGC
zB=ivD-EvXi;_~5|>T&9Rmlm-*q=L^}%a!t8#ofC5*|#W1x)1vyCCwgaxDV#E7`VBY
znX3$LfmQIcZJ>SH>s{89JaPxL)K?@`e|z!rw|4&d)?MG;pKtvB&ENjdjn=LBrp}fb
z?^HYan`d-)0@%V_Hzi*U%K1Nz#73I)_+7BP<M&CtI}UgpFa?+f@cl{s{siuB=l|$y
zhVi>O|94(bYb+<v|MA?9dWWog3fA5ywKSgG@D`N+C!WM%LA<28fJi*s$q<D9C+fhe
z5=5pQE=%}M-e%x=4%)eT@c$IK1NpF@c%`5F3e>zi2>(y_>bSk)C+{GM2q$rFp-2Be
z!v6<PpLxZ90&#=%|D(n`ulSAh2jTyRcvX<K>VEZupF8#4LO1?r{NU#-po9OP&A!Jv
za4W0&X2c(a{~z`xj!WI(55WHqJm5+{hhFg?MSP{z1mOS2cl}QQ|D6B^^E|vO|3AL*
z8{5A%%Y6U*|BQofMZXolz5f$YRkj!S{}J{#o*?wv{yD^bLC?*KpZ(p<-;T8q-T1$u
zRYZ+{cKA8^uZZ0|-u(aEgZ$_(!YlnpT=2L2?|AnA6QTbzKmLzc)&Twg1j_$i`2UIA
z2YOid40!AqD6eMqSn4ELFa95+$V>U4)U$QHnft%lgMjhuwO9X-oSVR9foJ}sKMvZh
z7=rNs$UT*`fqAWeBmMUBe*rc*&;B1Hdw`pBG_Ux%byN9&wDx~{`DbhuBsK*2e~M6+
z?gMzm&+*zx{zyzsSS97TE-(I{h*t$e(HtMy^yC)?Z~m9mDA_(c>c;<55_p63|HK6b
z)+g%#w~m1}6E*)Zw(R@m{|Uy`P5)1`;B>B3C@%wSd3Cy*yh+_NA-w<Cll4#+{<n<%
z&nR!zzE^9Xbo0VU|7VK#yw*P{VH*S$y1{S6&GzUvaPHMh`d<A95w~^u)DJCAWw&b|
zyLZH8_r8~RR;!`2M+91<WS|Y?4S?T$*P;I(`Z6+mP5B_b8Y%xMtEMIM(EpFwD^%$J
zhi6wq|39JspV0r0(F0ZJ|3~_0ZTTYe?%~LMDpH;P_2O4!&bQw2L3(mB)7d%=?BvDi
z!*))d)-k8L;L4Rh4RianwDp{`7tXHsF}><sZ)XnYT5rF$s`7B*r8WDRdsS<O{(qe0
zQ|o;C)a3KNIXdVQ$g{9rh5mnd7PQ@~sGG-8tKY@;b}{?(QT?9wk4|x|ww}=cPrpk2
zmUgP1oIUp_4hjALxcT>_9oMWGtD3dzHFLh@>-NzDTl$cZUOOuLSzmC{cDYt*q&xKg
zBQ>i*YkwzwvAzARF|9RW)T`uk=>G?uXh1@*|34!1ALQf*DfAx{^#3Xep4Xb8{~+OE
zB$)pt(|h|^y=n}KcaYG3P>}z#D0n^#{Ri<l{`QmCR(TNm50bvTw|`58{)4vuf4B86
z2kkxWg#LrJqbxMHRp>t`=>Id=-Gtt1E%BQRJ)=nfJ>Bi2#Xi%}e~{cXPKTDE{~(_X
zDA&zG|3P-XjY9uHZoZ6o;wbbV6#5V9cUMpS>_4bnOOBS)^NCn(I5iT3|Ef%EEL~lQ
zjnv8u!(*vhZ8$wf|3Ra}83+GC^m`)1f!BC0avq@kDd-=z^cMOL>hxc(={nK;zkiLI
JVz2&#{txY!SpWb4

literal 0
HcmV?d00001

diff --git a/PESubsystem/PESubsystem.sln b/PESubsystem/PESubsystem.sln
new file mode 100644
index 0000000..2237608
--- /dev/null
+++ b/PESubsystem/PESubsystem.sln
@@ -0,0 +1,22 @@
+
+Microsoft Visual Studio Solution File, Format Version 12.00
+# Visual Studio 15
+VisualStudioVersion = 15.0.26228.76
+MinimumVisualStudioVersion = 10.0.40219.1
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "PESubsystem", "PESubsystem\PESubsystem.csproj", "{3629B7C7-6FA1-4156-A996-2D0C98498C7B}"
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|Any CPU = Debug|Any CPU
+		Release|Any CPU = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{3629B7C7-6FA1-4156-A996-2D0C98498C7B}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{3629B7C7-6FA1-4156-A996-2D0C98498C7B}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{3629B7C7-6FA1-4156-A996-2D0C98498C7B}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{3629B7C7-6FA1-4156-A996-2D0C98498C7B}.Release|Any CPU.Build.0 = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(SolutionProperties) = preSolution
+		HideSolutionNode = FALSE
+	EndGlobalSection
+EndGlobal
diff --git a/PESubsystem/PESubsystem/App.config b/PESubsystem/PESubsystem/App.config
new file mode 100644
index 0000000..88fa402
--- /dev/null
+++ b/PESubsystem/PESubsystem/App.config
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<configuration>
+    <startup> 
+        <supportedRuntime version="v4.0" sku=".NETFramework,Version=v4.5.2" />
+    </startup>
+</configuration>
\ No newline at end of file
diff --git a/PESubsystem/PESubsystem/PESubsystem.csproj b/PESubsystem/PESubsystem/PESubsystem.csproj
new file mode 100644
index 0000000..ab22640
--- /dev/null
+++ b/PESubsystem/PESubsystem/PESubsystem.csproj
@@ -0,0 +1,52 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Project ToolsVersion="15.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <Import Project="$(MSBuildExtensionsPath)\$(MSBuildToolsVersion)\Microsoft.Common.props" Condition="Exists('$(MSBuildExtensionsPath)\$(MSBuildToolsVersion)\Microsoft.Common.props')" />
+  <PropertyGroup>
+    <Configuration Condition=" '$(Configuration)' == '' ">Debug</Configuration>
+    <Platform Condition=" '$(Platform)' == '' ">AnyCPU</Platform>
+    <ProjectGuid>{3629B7C7-6FA1-4156-A996-2D0C98498C7B}</ProjectGuid>
+    <OutputType>Exe</OutputType>
+    <RootNamespace>PESubsystem</RootNamespace>
+    <AssemblyName>PESubsystem</AssemblyName>
+    <TargetFrameworkVersion>v4.5.2</TargetFrameworkVersion>
+    <FileAlignment>512</FileAlignment>
+    <AutoGenerateBindingRedirects>true</AutoGenerateBindingRedirects>
+  </PropertyGroup>
+  <PropertyGroup Condition=" '$(Configuration)|$(Platform)' == 'Debug|AnyCPU' ">
+    <PlatformTarget>AnyCPU</PlatformTarget>
+    <DebugSymbols>true</DebugSymbols>
+    <DebugType>full</DebugType>
+    <Optimize>false</Optimize>
+    <OutputPath>bin\Debug\</OutputPath>
+    <DefineConstants>DEBUG;TRACE</DefineConstants>
+    <ErrorReport>prompt</ErrorReport>
+    <WarningLevel>4</WarningLevel>
+  </PropertyGroup>
+  <PropertyGroup Condition=" '$(Configuration)|$(Platform)' == 'Release|AnyCPU' ">
+    <PlatformTarget>AnyCPU</PlatformTarget>
+    <DebugType>pdbonly</DebugType>
+    <Optimize>true</Optimize>
+    <OutputPath>bin\Release\</OutputPath>
+    <DefineConstants>TRACE</DefineConstants>
+    <ErrorReport>prompt</ErrorReport>
+    <WarningLevel>4</WarningLevel>
+  </PropertyGroup>
+  <ItemGroup>
+    <Reference Include="System" />
+    <Reference Include="System.Core" />
+    <Reference Include="System.Xml.Linq" />
+    <Reference Include="System.Data.DataSetExtensions" />
+    <Reference Include="Microsoft.CSharp" />
+    <Reference Include="System.Data" />
+    <Reference Include="System.Net.Http" />
+    <Reference Include="System.Xml" />
+  </ItemGroup>
+  <ItemGroup>
+    <Compile Include="Program.cs" />
+    <Compile Include="Properties\AssemblyInfo.cs" />
+  </ItemGroup>
+  <ItemGroup>
+    <None Include="App.config" />
+  </ItemGroup>
+  <Import Project="$(MSBuildToolsPath)\Microsoft.CSharp.targets" />
+</Project>
\ No newline at end of file
diff --git a/PESubsystem/PESubsystem/Program.cs b/PESubsystem/PESubsystem/Program.cs
new file mode 100644
index 0000000..d61ab5a
--- /dev/null
+++ b/PESubsystem/PESubsystem/Program.cs
@@ -0,0 +1,94 @@
+using System;
+using System.Collections.Generic;
+using System.IO;
+using System.Linq;
+using System.Text;
+using System.Threading.Tasks;
+
+namespace PESubsystem
+{
+    class Program
+    {
+
+        static short ReadInt16(Stream str)
+        {
+            byte[] IntBytes = new byte[2];
+            str.Read(IntBytes, 0x00, 0x2);
+            return BitConverter.ToInt16(IntBytes, 0x0);
+        }
+
+        static void WriteInt16(Stream str, short shr)
+        {
+            byte[] IntBytes = BitConverter.GetBytes(shr);
+            str.Write(IntBytes, 0x00, 0x2);
+        }
+        static int ReadInt32(Stream str)
+        {
+            byte[] IntBytes = new byte[4];
+            str.Read(IntBytes, 0x00, 0x4);
+            return BitConverter.ToInt32(IntBytes,0x0);
+        }
+        static void Main(string[] args)
+        {
+            string FileName = "";
+            if(args.Length >= 1)
+            {
+                FileName = args[0];
+            }
+            else
+            {
+                Console.Write("Enter Filepath: ");
+                FileName = Console.ReadLine();
+            }
+
+            FileStream fs = new FileStream(FileName, FileMode.Open, FileAccess.ReadWrite);
+
+            fs.Seek(0x3C, SeekOrigin.Begin);
+            int PELocation = ReadInt32(fs);
+
+            Console.WriteLine("PE Header Location: " + PELocation.ToString());
+
+            fs.Seek(PELocation, SeekOrigin.Begin);
+            fs.Seek(0x5C, SeekOrigin.Current);
+
+            int Subsystem = ReadInt16(fs);
+
+            string Subsystem_Str = "";
+
+            switch(Subsystem)
+            {
+                case 1:
+                    Subsystem_Str = "Win32_DRIVER";
+                    break;
+                case 2:
+                    Subsystem_Str = "Win32_GUI";
+                    break;
+                case 3:
+                    Subsystem_Str = "Win32_CUI";
+                    break;
+                default:
+                    Subsystem_Str = "UNKNOWN";
+                    break;
+            }
+
+            Console.WriteLine("PE Subsystem: " + Subsystem.ToString() + " ("+ Subsystem_Str+")");
+
+            short NewSubsys = 0;
+
+            if (args.Length >= 2)
+            {
+                NewSubsys = Int16.Parse(args[1]);
+            }
+            else
+            {
+                Console.WriteLine("\nSubsystems:\n1) WIN32_DRIVER\n2) WIN32_GUI\n3) WIN32_CUI\n\nEnter new subsystem value: ");
+                NewSubsys = Int16.Parse(Console.ReadLine());
+            }
+
+            fs.Seek(-2, SeekOrigin.Current);
+            WriteInt16(fs, NewSubsys);
+
+            Console.WriteLine("Done! Subsystem value changed to: " + NewSubsys + "\nBlessed Be!");
+        }
+    }
+}
diff --git a/PESubsystem/PESubsystem/Properties/AssemblyInfo.cs b/PESubsystem/PESubsystem/Properties/AssemblyInfo.cs
new file mode 100644
index 0000000..9725bb0
--- /dev/null
+++ b/PESubsystem/PESubsystem/Properties/AssemblyInfo.cs
@@ -0,0 +1,36 @@
+using System.Reflection;
+using System.Runtime.CompilerServices;
+using System.Runtime.InteropServices;
+
+// General Information about an assembly is controlled through the following
+// set of attributes. Change these attribute values to modify the information
+// associated with an assembly.
+[assembly: AssemblyTitle("PESubsystem")]
+[assembly: AssemblyDescription("")]
+[assembly: AssemblyConfiguration("")]
+[assembly: AssemblyCompany("")]
+[assembly: AssemblyProduct("PESubsystem")]
+[assembly: AssemblyCopyright("Copyright ©  2019")]
+[assembly: AssemblyTrademark("")]
+[assembly: AssemblyCulture("")]
+
+// Setting ComVisible to false makes the types in this assembly not visible
+// to COM components.  If you need to access a type in this assembly from
+// COM, set the ComVisible attribute to true on that type.
+[assembly: ComVisible(false)]
+
+// The following GUID is for the ID of the typelib if this project is exposed to COM
+[assembly: Guid("3629b7c7-6fa1-4156-a996-2d0c98498c7b")]
+
+// Version information for an assembly consists of the following four values:
+//
+//      Major Version
+//      Minor Version
+//      Build Number
+//      Revision
+//
+// You can specify all the values or you can default the Build and Revision Numbers
+// by using the '*' as shown below:
+// [assembly: AssemblyVersion("1.0.*")]
+[assembly: AssemblyVersion("1.0.0.0")]
+[assembly: AssemblyFileVersion("1.0.0.0")]