Cybercrime is now a highly competitive, multi-billion-dollar business. Criminals are using malware that is geo-targeted based on information gleaned from the computers IP address or the language setting in Windows. They want to target wealthy countries with particular kinds of malware, like ransomware and banking malware, while utilizing other victims for more mundane tasks like spamming or participating in denial-of-service attacks. Cybercrooks are imitating local brands and using grammatically correct local languages as lures.”]
Source: https://news.sophos.com/en-us/2016/05/03/location-based-ransomware-threat-research/