considering you can get the correct SHA1 hashes from technet and MSDN
i always wonder why people dowload these files which got different hash
![Smiley :)](https://forum.avast.com/Smileys/default/smiley.gif)
so in ethen it really don't matter from where you download as long as the hashes match original
anyway in todays world of targeted attacks it's really not surprising that badware authors use this chance