Did you verify the signature ?
Even if you download it from the official source, a Man-in-the-middle attack could replace the original client with a malicious one.
Verifying the signature is the only way to make sure you are using the correct version.
If you are too lazy to verify the signature, at least check the hash of the file.
To check the hash, please do the following (assuming you are on windows):
- Open the command promt (WIN-key + R -> then enter 'cmd')
- Enter: certUtil -hashfile C:/path/to/your/electrum/file.exe sha256
Then please post the output here and tell us which version of electrum you are using. I am then going to download the correct file and verify that the hash is the same.
If this is the case, your client was non-malicious and we have to look further how your coins got stolen.
Here the output I have :
a0 ac b5 93 de 3b 9b a3 c5 30 79 34 c7 95 41 ed 69 50 1a e2 7b 0e 10 70 6a 63 87 34 46 8d 20 9f
I have to precise that I downloaded the "standalone executable" version of Electrum .