The sub-techniques beta is now live! Read the release blog post for more info.


OBAD is an Android malware family. [1]

ID: S0286
Platforms: Android
Version: 1.1
Created: 25 October 2017
Last Modified: 11 December 2018

Techniques Used

Domain ID Name Use
Mobile T1401 Abuse Device Administrator Access to Prevent Removal

OBAD abuses device administrator access to make it more difficult for users to remove the application.[1]

Mobile T1406 Obfuscated Files or Information

OBAD contains encrypted code along with an obfuscated decryption routine to make it difficult to analyze.[1]