is it one of the typical functional email addresses?
e.g. admin@example.com, webmaster@example.com, etc...

Nope .. a personal I have used for more than 25 years. If it makes a difference, April I had to change hosts (which resulted in a different dedicated IP) and it appears this stuff surfaced about the same time.

Sorry to hear that.
It may simply have been a coincidence of the change in April; You'll probably never know.

Spoofed addresses are commonplace, and you're lucky to have gotten away with it for so long, imho.

Solution: If it's not a critical address, change it and move on.

I get a lot of spam claiming to be FROM me as well as to and from arbitrary addresses at my domains. I've dropped old, unused addresses but I refuse to dump functional ones as my customers, friends and family contact me on some of them.

Do you have SPF, DKIM and DMARC set up for your domain? If not, I strongly advise doing so. I set the DMARC DNS entry to "reject", which tells the more compliant mail servers (eg google, oath) to ignore anything which is not signed and from my server.

As to receiving mail, I use postfix and have set it up to reject a variety of random senders using HELO tests. I reject unknown DNS response, dynamic and static rDNS (which are indicative of broadband) and a number of other stupidities. Today, for example, I got a LOT of HELOs using my own IP, which is a definite no-no.