Hi! The site from where I downloaded (what it seems to be a v.2.5.8.0 infected by threat according to Windows 10 Defender) is indeed the mirror 7, managed by imgburn.com. As I have told, Edge have destroyed it before I had access to it.
Using the same tools - and the same browsing section -, I tried other mirrors to download v.2.5.8.0. They were: majorgeeks (mirror 6), techspot (5), free-codes (4) and softpedia (3). They all passed the Windows Defender screening and they all delivered the same image (i.e., all presented the same SHA-1 value). Nonetheless, the SHA-1 value does not match the one presented at the download page. The software used to calculate SHA-1 belongs to 7-zip, v19.00.