Hidden and open seems to be a strange combination. Android has an option to enable per SSID configuration that identifies an SSID as hidden ... ie, there won't be an AP sending broadcast beacons with the SSID name in them, but will respond to probe requests for that name. Verify that setting is enabled on the Android device.
But hidden and open, is the SSID trying to run mac-auth to limit/secure connectivity?