If it has a specified target location, such information doesn't exempt crypto users from other parts of the world to learn about such attack. From what you've just shared, this attack seems to be done via email, since its more of a direct way of communicating with someone, and In most cases, it raises our curiosity to knowing who actually sent the mail and what the main truly contains, thereby leading us to clicking. I have received few mails that contains a download links, but quite informed enough to blocking them.
As far as I know, this criminals in the beginning will target a specified location before venturing out on other. As if they are testing if their new malware are going to be effective, and if it is, then obviously they will make a revision to target other countries as well.
Some we received are going into our spam, but there are others that can really go into our inbox and will not be filtered by our email services. So that's where the dangers lie in, we shouldn't click any specially if the source is unknown to us.
Anyway, thanks again to the OP for this warning.