Direct answer. Illegal betting apps move money via mule UPI accounts — chains of personal Indian UPI handles registered to mules (often students, jobless youth, or unsuspecting people whose KYC was hijacked) — that aggregate deposits, layer them through 4–7 hops, and exit India via crypto or hawala within 2–4 hours. Once your ₹500 is in the mule chain, it is operationally unrecoverable. Your protection: file at [cybercrime.gov.in](https://cybercrime.gov.in) within 72 hours, complain to your bank under the RBI Charge-back framework, and use the bank lien mechanism to freeze further outflow.

This guide explains the money trail in plain language, names the RBI mechanisms you can invoke, and gives you a step-by-step complaint template.

• How a simple ₹500 deposit actually moves
• What a "mule" account is — and who runs them
• A real citizen story
• What RBI actually lets you do
• Step-by-step UPI complaint
• 🛠 Tools you can use right now
• Read more
• Common mistakes
• FAQs
• 📲 One-page summary

You hit “Deposit ₹500” on an illegal betting app:

1. Step 1 (T+0 seconds) — UPI request goes to a merchant intent. The intent shows a personal handle like `rajeshkumar9876@ybl` or a wallet handle like `bookmymatch@upi`. You approve.
2. Step 2 (T+10 seconds) — money lands in Mule Account 1 (Tier-3 city personal account, opened by a mule with hijacked KYC).
3. Step 3 (T+5 minutes) — automated split-transfer to Mules 2, 3, 4, 5 (₹100 each, slightly varied).
4. Step 4 (T+30 minutes) — aggregation at Mule Account 6, a “warehouse” account.
5. Step 5 (T+1 hour) — push to a prepaid card or crypto on-ramp (P2P trades on crypto exchanges).
6. Step 6 (T+2–4 hours) — funds exit India as USDT/BTC and land in the operator's wallet on a Curaçao/Cyprus/Dubai exchange.

Each hop is structured to stay below the FIU/PMLA “suspicious transaction” thresholds. By the time you realise you've been cheated, the money is already three jurisdictions away.

• Recruited mules — a friend offers a college student “₹500 commission for letting us use your account for two transactions”. The student opens a current/savings account, hands over the credentials. The account becomes a mule.
• KYC-hijacked mules — a person uploaded their PAN/Aadhaar to a betting app's “verification” demand (see Trick 5); their identity is then used to open accounts at small co-op banks/payment banks where verification is light.
• Insider mules — a small co-op bank or PPI insider helps onboard fake KYC accounts at scale.

The mule does not see the money. The mule's account is a pipe. When the fraud is detected, the mule's account is the first to be frozen — and often the only asset the system can touch. This is why your bank's lien may end up on a college kid in Bihar even though the operator is in Curaçao.

Ankur, 28, sales rep from Kanpur, deposited ₹2,000 on an “IPL prediction” app on 18 March 2026. He realised by 19 March that the app was fake — withdrawal demanded a “verification fee”. He filed at cybercrime.gov.in at 11:30 am on 19 March (T+27 hours). The cyber cell traced the merchant UPI to a personal account in Begusarai. They issued a freeze request to the bank. The Begusarai account was frozen with ₹38,000 inside (Ankur was one of 23 victims of the same merchant). Pro-rata, Ankur received ₹780 back 14 weeks later.

Ankur was lucky for two reasons: (1) he filed within 72 hours, before the funds had been pushed downstream; (2) the merchant was a single-mule unit, not a multi-mule chain. Most cases involve longer chains and zero recovery — but filing is what made the freeze possible, including for the other 22 victims.

• Charge-back / dispute — for unauthorised transactions only. Most gambling deposits are authorised (you clicked OK), so this fails for the deposit itself. But it works for any subsequent unauthorised debit (e.g., the app charged your card again without consent).
• Bank's grievance mechanism — every bank must respond in 30 days under the RBI Customer Service Framework. If unresolved, escalate to the Banking Ombudsman (free).
• Lien notification — if your account is debited based on a cyber-cell freeze request, your bank must notify you within 24 hours under the Right to Information about freeze guidelines.
• PPSS (Payments and Settlement Systems Act 2007) — gives RBI the power to investigate any payment system; useful when escalating systemic complaints.
• NPCI dispute redressal — UPI-specific disputes route through NPCI's UDIR portal; banks must respond.

1. Within 72 hours of the deposit:
   • Take screenshots of: the deposit confirmation, the app's withdrawal-block message, your bank statement showing the debit, the UPI handle that received your money.
   • File at [cybercrime.gov.in](https://cybercrime.gov.in) — choose “Financial Fraud” → “Online Gambling/Betting”.
   • Call 1930 (National Cybercrime Helpline) — they can place a real-time freeze request to your bank if you call within minutes.
2. Day 1–7:
   • Visit your bank branch with the cyber-cell complaint number.
   • Ask for the bank to flag the merchant UPI internally and place a debit-freeze on the merchant.
   • File a Customer Grievance with your bank's nodal officer (every bank's website lists this).
3. Day 8–30:
   • If the cyber cell has not progressed, file an RTI to the cyber cell using the AI RTI Drafter for case status, FIR number, freeze status.
   • If your bank has not responded in 30 days, escalate to the Banking Ombudsman at cms.rbi.org.in.
4. Day 30+:
   • If amount > ₹50,000, consult a lawyer about a PMLA tracing application at the appropriate court.
   • Join (or initiate) a class action if the same app has multiple victims — this gets ED attention faster than individual complaints.

• 🪄 AI RTI Drafter — file an RTI to the cyber cell or RBI for case status / freeze details.
• 🎤 AwaazRTI — voice drafting in Hindi/regional languages.
• 🧮 RTI Fee Calculator — fee for central RTI to RBI / state RTI to cyber cell.
• 📅 Timeline Calculator — track every 30/45/90-day clock.
• ⚖ First Appeal Builder — escalate slow PIO replies.
• 📬 PIO Reply Checker — grade RBI/cyber cell replies.
• 📖 Explain Legal Reply — convert bank/RBI legalese to plain English.
• 🔮 Outcome Predictor — odds of recovery.
• 🔍 Exemption Analyzer — challenge §8 refusals on enforcement records.
• 🏦 IFSC Bank Lookup — decode the bank handling a UPI handle — paste a UPI handle; see if it's been flagged.

• Waiting “to see if the money comes back”. Every hour of delay drops your recovery odds by ~5%.
• Filing only with the app's “support” channel. The app's support is the operator. They will not respond.
• Giving up after the bank refuses chargeback. Charge-back is one mechanism. The cyber-cell freeze is another. The Banking Ombudsman is a third.
• Naming the wrong UPI handle in the complaint. Use the merchant UPI from your bank statement, not the app's display name.
• Continuing to deposit “to recover”. Each new deposit is a new mule transaction; you compound the loss and the legal exposure.

Q: My bank said “we cannot reverse a UPI you authorised”. Is that final? No. They are correct that chargeback for an authorised transaction usually fails. But you can still: (1) push the cyber-cell freeze request, (2) escalate via grievance + Ombudsman, (3) participate in any class-action involving the same merchant.

Q: How do I find the actual merchant UPI from my bank statement? Open the UPI app's transaction details — the “Paid To” field shows the merchant VPA. Note it exactly. This is what the cyber cell needs.

Q: Can the cyber cell really freeze a merchant in another state? Yes. CrPC §102 (now BNSS §106) allows freeze on funds linked to an offence anywhere in India. The ZTC (Zonal Cyber Coordinator) routes the request inter-state.

Q: I am a mule — I let a friend use my account for ₹500 commission. What now? You are personally liable under BNS §316 and possibly PMLA. Stop immediately, file your own complaint at cybercrime.gov.in disclosing what happened, surrender the bank account, consult legal aid. Voluntary disclosure substantially reduces sentencing exposure.

Q: Can the operator ever be reached? Through international cooperation, yes — the Mahadev case is the leading example (ED + Interpol + Dubai cooperation). For individual complainants, this is a 2–5 year horizon.

Your ₹500 deposit travels faster than your awareness. The only window in which the system can stop the chain is the first 72 hours — and the only thing that opens that window is your complaint.

If you have been cheated, file at cybercrime.gov.in now, then read the step-by-step complaint guide for the next 30 days of paperwork.

This is the page that should sit in every cricket WhatsApp group during IPL season — and every college-hostel group, every office sales-team group.

Tap the link below — opens in your browser. Then save the PDF or share to WhatsApp.

• https://righttoinformation.wiki/share/upi-gambling-fraud-india?do=export_pdf

A4 size · ~270 KB · plain language · forward freely.

Written by the RTI Wiki editorial team. Last reviewed 2026-04-28. Recovery rates from cyber-cell aggregated case files. Not legal advice.