htaccess

Chinese autoclickers are hammering buttons in my online store - how to get rid of it?

There is an online store on the Wordpress platform, hosted by IHC.
The last three days have greatly increased the load. I dug into the logs and found that the peaks of activity coincide with the clicks of active elements on the site (add to cart, compare brands).
Visits are not caught by the metric, i.e. Apparently less than a second, bots.
I noticed 100% patterns in all these unwanted logs:
1. AppleWebKit/537.36
2. OPPO A33 or FRD-AL00 Build/HUAWEIIFRD-AL00
3. MQQBrowser or Mb2345Browser or UCBrowser
4. All these visits are from China (mostly ZN)
Examples:
Mozilla/5.0(Linux;U;Android 5.1.1;zh-CN;OPPO A33 Build/LMY47V) AppleWebKit/537.36(KHTML,like Gecko) Version/4.0 Chrome/40.0.2214.89 UCBrowser/11.7.0.953 Mobile Safari/537.36
Mozilla /5.0 (Linux; Android 7.0; FRD-AL00 Build/HUAWEIIFRD-AL00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/53.0.2785.49 Mobile MQQBrowser/6.2 TBS/043602 Safari/537.36 MicroMessenger/6.5. 16.1120 NetType/WIFI Language/zh_CN
Banning by IP is not an option, there are hundreds of them.
The option with Chinese IP lists is also not suitable, since not a single IP I caught (up to the first two points) matches any of the bases.
The GeoIP module is not available on hosting.
Those. It is impossible to block purely China through htaccess in the ways that I found on the Internet.
Although blocking China is the most suitable option in my opinion, but here's how to do it - I didn't do it and didn't find an understandable manual.
What are the options and offers? Much appreciated for a useful link or hint, or for a specific solution.
It is possible to deny access by browser or mobile device (which I indicated above in the patterns). But I haven't quite figured out how to spell it correctly.